git.ipfire.org Git - people/pmueller/ipfire-2.x.git/commit

]> git.ipfire.org Git - people/pmueller/ipfire-2.x.git/commit

projects / people / pmueller / ipfire-2.x.git / commit

author	peter.mueller@ipfire.org <peter.mueller@ipfire.org>
	Mon, 4 Nov 2019 18:52:00 +0000 (18:52 +0000)
committer	Arne Fitzenreiter <arne_f@ipfire.org>
	Wed, 13 Nov 2019 19:09:07 +0000 (19:09 +0000)
commit	583687a88d263b68b4fdb27e78a7b65120d21088
tree	d716b6eab9593fe40de234a9a867abfde9521954	tree \| snapshot
parent	1141bc69c9b218717699c1ee02ed06e566aea96b	commit \| diff

Apache: prevent Referrer leaks via WebUI

By default, even modern browsers sent the URL of ther originating
site to another one when accessing hyperlinks. This is an information
leak and may expose internal details (such as FQDN or IP address)
of an IPFire installation to a third party.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Acked-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>

config/httpd/vhosts.d/ipfire-interface-ssl.conf		diff \| blob \| blame \| history
config/httpd/vhosts.d/ipfire-interface.conf		diff \| blob \| blame \| history

Peter's tree of IPFire 2.x

RSS Atom