httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Bug 59829] Detect HTTPS marker from reverse proxy
Date Thu, 01 Dec 2016 19:51:05 GMT

--- Comment #3 from ---
This part worries me about your proposal

r->server->server_scheme = config->secure_header_value;

This is not guaranteed to always be "http" or "https". That variable is set by
the user, because you can't guarantee how their existing reverse proxy server
reports it. I think it should be changed just to:

r->server->server_scheme = "https";

You are receiving this mail because:
You are the assignee for the bug.
To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message