From mboxrd@z Thu Jan  1 00:00:00 1970
From: Peter =?utf-8?q?M=C3=BCller?= <peter.mueller@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH 2/4] httpd: disable sending ETag header completely
Date: Mon, 12 Apr 2021 23:00:46 +0200
Message-ID: <8698f06c-19c9-1680-f179-4d50c00bed1a@ipfire.org>
In-Reply-To: <0b270dd5-9a61-2901-c75e-8698dd4373e8@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============5413879383451308903=="
List-Id: <development.lists.ipfire.org>

--===============5413879383451308903==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit

These cause caching trouble and pose a potential security risk due to
exposing inode numbers of files within the Apache site directories on an
IPFire machine.

Signed-off-by: Peter Müller <peter.mueller(a)ipfire.org>
---
 config/httpd/global.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/config/httpd/global.conf b/config/httpd/global.conf
index cc8000379..46878baf5 100644
--- a/config/httpd/global.conf
+++ b/config/httpd/global.conf
@@ -8,6 +8,7 @@ Include /etc/httpd/conf/hostname.conf
 HostnameLookups off
 AddHandler cgi-script .cgi
 EnableSendfile Off
+FileETag None
 
 # Always unset HTTP_PROXY variable, https://httpoxy.org
 RequestHeader unset Proxy early
-- 
2.26.2

--===============5413879383451308903==--