This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "IPFire 2.x development tree".
The branch, next has been updated via 3b7d73d1d40b11b1eaf2ae48ebd22ef4cb587ff1 (commit) from 71f578bbfc43b5cf5b6480f00ca4536bd4155143 (commit)
Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below.
- Log ----------------------------------------------------------------- commit 3b7d73d1d40b11b1eaf2ae48ebd22ef4cb587ff1 Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jul 19 15:01:05 2016 +0100
Fix potential HTTPoxy vulnerability
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
-----------------------------------------------------------------------
Summary of changes: config/httpd/global.conf | 3 +++ config/rootfiles/core/104/filelists/files | 1 + 2 files changed, 4 insertions(+)
Difference in files: diff --git a/config/httpd/global.conf b/config/httpd/global.conf index 3fbd5e2..6cc69b5 100644 --- a/config/httpd/global.conf +++ b/config/httpd/global.conf @@ -8,3 +8,6 @@ Include /etc/httpd/conf/hostname.conf HostnameLookups off AddHandler cgi-script .cgi EnableSendfile Off + +# Always unset HTTP_PROXY variable, https://httpoxy.org +RequestHeader unset Proxy early diff --git a/config/rootfiles/core/104/filelists/files b/config/rootfiles/core/104/filelists/files index 6679071..f23acea 100644 --- a/config/rootfiles/core/104/filelists/files +++ b/config/rootfiles/core/104/filelists/files @@ -1,5 +1,6 @@ etc/system-release etc/issue etc/collectd.conf +etc/httpd/conf/global.conf opt/pakfire/lib/functions.sh srv/web/ipfire/cgi-bin/ids.cgi
hooks/post-receive -- IPFire 2.x development tree