Parent Directory | Revision Log
add temporary fix on champagne for CVE-2011-3192
1 | # Drop the Range header when more than 5 ranges. |
2 | # CVE-2011-3192 |
3 | SetEnvIf Range (?:,.*?){5,5} bad-range=1 |
4 | RequestHeader unset Range env=bad-range |
5 | |
6 | # We always drop Request-Range; as this is a legacy |
7 | # dating back to MSIE3 and Netscape 2 and 3. |
8 | # |
9 | RequestHeader unset Request-Range |
10 | |
11 | # optional logging. |
12 | CustomLog logs/range-CVE-2011-3192.log common env=bad-range |
ViewVC Help | |
Powered by ViewVC 1.1.30 |