On Thu, Jan 4, 2024 at 9:04 PM Jason Pyeron <jpye...@pdinc.us> wrote:
> I am having some issue searching Bugzilla for any issue involving 
> process_regexp in mod_headers.c .
> It finds nothing, so I am assuming I did something wrong in my search. Will 
> file bug if not already filed.
> We are investigating an infinite loop (stack overflow) issue, caused by 
> "securing" a system.
> ZZZ-STIG-SV-214288r881493_rule.conf:Header always edit* Set-Cookie ^(.*)$ 
> $1;HttpOnly;secure

edit* just makes no sense at all here when you are capturing/replacing
the entire string and will loop by definition.

Are you looking to have mod_headers bail out after an unreasonable
number of iterations or header length?

Reply via email to