Hi, Is there a way to prevent Arbitrary HTTP Host header in Nginx? Penetration test has reported accepting arbitrary host headers. Thanks in Advance and I look forward to hearing from you.
More Information as below:- https://www.acunetix.com/blog/articles/automated-detection-of-host-header-attacks/ https://www.skeletonscribe.net/2013/05/practical-http-host-header-attacks.html Best Regards, Kaushal
_______________________________________________ nginx mailing list [email protected] http://mailman.nginx.org/mailman/listinfo/nginx
