Parent Directory
| 
Revision Log
add temporary fix on champagne for CVE-2011-3192
| 1 | # Drop the Range header when more than 5 ranges. |
| 2 | # CVE-2011-3192 |
| 3 | SetEnvIf Range (?:,.*?){5,5} bad-range=1 |
| 4 | RequestHeader unset Range env=bad-range |
| 5 | |
| 6 | # We always drop Request-Range; as this is a legacy |
| 7 | # dating back to MSIE3 and Netscape 2 and 3. |
| 8 | # |
| 9 | RequestHeader unset Request-Range |
| 10 | |
| 11 | # optional logging. |
| 12 | CustomLog logs/range-CVE-2011-3192.log common env=bad-range |
| ViewVC Help | |
| Powered by ViewVC 1.1.30 |