Transition Technology: Ticket #921: HTTP_PROXY env var vulnerability http://localhost:8080/trac/ticket/921 <p> See <a class="ext-link" href="https://httpoxy.org/"><span class="icon">​</span>https://httpoxy.org/</a> </p> en-us Transition Technology /trac/chrome/site/TransitionNetwork-Logo-Web-Small.jpg http://localhost:8080/trac/ticket/921 Trac 0.12.5 chris Tue, 19 Jul 2016 12:56:29 GMT hours, totalhours changed http://localhost:8080/trac/ticket/921#comment:1 http://localhost:8080/trac/ticket/921#comment:1 <ul> <li><strong>hours</strong> changed from <em>0.0</em> to <em>0.4</em> </li> <li><strong>totalhours</strong> changed from <em>0.0</em> to <em>0.4</em> </li> </ul> <p> This vulnerability can be tested with using the Firefox <a class="ext-link" href="http://www.garethhunt.com/modifyheaders/"><span class="icon">​</span>Modify Headers</a> and <a class="ext-link" href="http://livehttpheaders.mozdev.org/"><span class="icon">​</span>livehttpheaders</a> add ons. </p> <p> I assume it isn't worth fixing <a class="wiki" href="http://localhost:8080/trac/wiki/PuffinServer">PuffinServer</a> as this is probably due to be switched off as the site has been migrated off it? </p> <p> On <a class="wiki" href="http://localhost:8080/trac/wiki/PenguinServer">PenguinServer</a>, this needs adding to all ngnix config for php: </p> <pre class="wiki">fastcgi_param HTTP_PROXY ""; </pre><p> And for Trac: </p> <pre class="wiki">proxy_set_header Proxy ""; </pre><p> And testing via <a class="ext-link" href="https://penguin.transitionnetwork.org/info/php-info.php"><span class="icon">​</span>https://penguin.transitionnetwork.org/info/php-info.php</a> and all is good. </p> <p> On <a class="wiki" href="http://localhost:8080/trac/wiki/ParrotServer">ParrotServer</a> the vulnerability was tested and was present so the following was added to <tt>/etc/apache2/apache2.conf</tt>: </p> <pre class="wiki">RequestHeader unset Proxy early </pre><p> And that fixed it. </p> Ticket chris Tue, 19 Jul 2016 13:12:55 GMT status changed; resolution set http://localhost:8080/trac/ticket/921#comment:2 http://localhost:8080/trac/ticket/921#comment:2 <ul> <li><strong>status</strong> changed from <em>new</em> to <em>closed</em> </li> <li><strong>resolution</strong> set to <em>fixed</em> </li> </ul> Ticket