[Modsecurity] Incomplete check in id:390080
Peter Pramberger
peter.pramberger at 1012surf.net
Wed Aug 16 03:25:58 EDT 2006
Hi all!
Today I noticed critical modsecurity errors in my apache log from rule id
390080 ("Checking for valid X-Forwarded header", jitp.conf), caused by our own
web proxy.
It looks like the regexp in this rule checks only for one entry in
X-Forwarded-For, but I use proxy chaining where each web proxy in the chain
attaches its own entry to this header field, eg.
X-Forwarded-For: unknown, 1.2.3.4
Regards,
Peter
More information about the Modsecurity
mailing list