On Thu, Jan 4, 2024 at 9:04 PM Jason Pyeron <jpye...@pdinc.us> wrote: > > I am having some issue searching Bugzilla for any issue involving > process_regexp in mod_headers.c . > > It finds nothing, so I am assuming I did something wrong in my search. Will > file bug if not already filed. > > We are investigating an infinite loop (stack overflow) issue, caused by > "securing" a system. > > ZZZ-STIG-SV-214288r881493_rule.conf:Header always edit* Set-Cookie ^(.*)$ > $1;HttpOnly;secure
edit* just makes no sense at all here when you are capturing/replacing the entire string and will loop by definition. Are you looking to have mod_headers bail out after an unreasonable number of iterations or header length?
