mirror/nginx
1
0
Fork 0
mirror of https://github.com/nginx/nginx.git synced 2024-12-04 13:59:00 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
The official NGINX Open Source repository.
4,389 Commits 21 Branches 568 Tags 86 MiB
C 97.6%
Vim Script 1.8%
XS 0.4%
Perl 0.1%
6000f4ad6d
Go to file
Valentin Bartenev 6000f4ad6d SNI: reset to default server if requested host was not found. 
Not only this is consistent with a case without SNI, but this also
prevents abusing configurations that assume that the $host variable
is limited to one of the configured names for a server.

An example of potentially unsafe configuration:

  server {
      listen 443 ssl default_server;
      ...
  }

  server {
      listen 443;
      server_name example.com;

      location / {
          proxy_pass http://$host;
      }
  }

Note: it is possible to negotiate "example.com" by SNI, and to request
arbitrary host name that does not exist in the configuration above.
2013-02-27 17:38:54 +00:00
auto Configure: changed default compiler from "gcc" to "cc". 2013-02-18 11:35:28 +00:00
conf Added the HTTPS fastcgi_param to fastcgi.conf. 2011-12-25 19:15:56 +00:00
contrib nginx-0.3.55-RELEASE import 2006-07-28 15:16:17 +00:00
docs nginx-1.3.13-RELEASE 2013-02-19 15:14:48 +00:00
misc Updated OpenSSL used for win32 builds. 2013-02-11 23:37:20 +00:00
src SNI: reset to default server if requested host was not found. 2013-02-27 17:38:54 +00:00
.hgtags release-1.3.13 tag 2013-02-19 15:15:11 +00:00