Hi guys. We have a large number of apache servers with nginx+modsecurity in front as reverse proxies. On the apache’s we add “X-Server-Name: <webserver>” to the http response header. This is used to investigate problems, so we can see which of the webservers suffer from a potential problem etc. However after putting modsecurity/nginx in front of the apaches, this field is now removed from the response-header. The modsec log does not say anything about it removing it, but if I disable modsec I get the header. So I assume it’s a part of modsec, not sure if it’s a part of the owasp crs though.
Here’s the thing; I would like this functionality, but wouldn’t it be cool if I could trigger this response-header by adding some “secret” text to my request? Like http://webserver.com?SHOWMETHEHEADER would pass this header-field from the apache’s response-header all the way back to the client on the other side of modsecurity. Problem is, I don’t know how :) Hints are appreciated. Thank you. Regards Søren Christian Aarup DBA/System Administrator LinkedIn: www.linkedin.com/in/aarup<http://www.linkedin.com/in/aarup> [DIBS - Payments made easy]<http://www.dibs.dk/>
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
