Development

#2200 ([PATCH] sfWebRequest::isSecure vulnerable to MITM attack)

You must first sign up to be able to contribute.

Ticket #2200 (new defect)

Opened 11 months ago

Last modified 1 month ago

[PATCH] sfWebRequest::isSecure vulnerable to MITM attack

Reported by: eckhofer Assigned to: fabien
Priority: major Milestone:
Component: controller Version: 1.0.0
Keywords: Cc:
Qualification: Design decision

Description

isSecure trusts HTTP_X_FORWARDED_PROTO which enables a MITM attacker to make the app believe it is on a secure connection when it actually isn't.

Attachments

webrequest_issecure.patch (0.7 kB) - added by eckhofer on 09/08/07 18:13:00.
patch against trunk. this basically just deletes the line with HTTP_X_FORWARDED_PROTO

Change History

09/08/07 18:13:00 changed by eckhofer

  • attachment webrequest_issecure.patch added.

patch against trunk. this basically just deletes the line with HTTP_X_FORWARDED_PROTO

09/08/07 18:13:27 changed by eckhofer

  • qualification set to Unreviewed.
  • summary changed from sfWebRequest::isSecure vulnerable to MITM attack to [PATCH] sfWebRequest::isSecure vulnerable to MITM attack.

10/01/07 08:18:26 changed by dwhittle

  • qualification set to Design decision.

06/23/08 06:10:18 changed by dwhittle

  • milestone set to 1.1.0 FINAL.

06/27/08 13:35:41 changed by fabien

  • milestone deleted.