Handling HTTP Requests on an HTTPS Virtual Server
Published Jul 24, 2018
Version 1.0Was this article helpful?
Hello! I think the line HTTP::redirect https://[HTTP::host][HTTP::uri] is going to open the door to the host header poisoning vulnerability; to prevent this, the value of [HTTP::host] can be validated against a whitelist.