/[adm]/puppet/modules/apache/templates/CVE-2011-3192.conf
ViewVC logotype

Contents of /puppet/modules/apache/templates/CVE-2011-3192.conf

Parent Directory Parent Directory | Revision Log Revision Log


Revision 2767 - (show annotations) (download)
Thu May 31 23:05:13 2012 UTC (12 years, 4 months ago) by boklm
File size: 461 byte(s)
add temporary fix on champagne for CVE-2011-3192
1 # Drop the Range header when more than 5 ranges.
2 # CVE-2011-3192
3 SetEnvIf Range (?:,.*?){5,5} bad-range=1
4 RequestHeader unset Range env=bad-range
5
6 # We always drop Request-Range; as this is a legacy
7 # dating back to MSIE3 and Netscape 2 and 3.
8 #
9 RequestHeader unset Request-Range
10
11 # optional logging.
12 CustomLog logs/range-CVE-2011-3192.log common env=bad-range

  ViewVC Help
Powered by ViewVC 1.1.30