httpoxy vulnerability

Welcome Forums DSC (Desired State Configuration) httpoxy vulnerability

This topic contains 2 replies, has 3 voices, and was last updated by

 
Member
2 years, 4 months ago.

  • Author
    Posts
  • #47376

    Participant
    Points: 0
    Rank: Member

    Hello
    where under dsc would this be set? under a module?

    https://httpoxy.org/

    thanks

  • #47378

    Keymaster
    Points: 1,644
    Helping HandTeam Member
    Rank: Community Hero

    I might not fully understand what you're asking, so please feel free to clarify if I've got it wrong.

    You're asking where you would set the HTTP response header information mentioned on that website.

    My understanding is that, for IIS, you'd be modifying Application.config. Right now, I'm not sure any of the existing IIS DSC resources are especially good at doing that. You could potentially use a generic XML resource, since Application.config is just XML.

  • #47383

    Member
    Points: 0
    Rank: Member

    Are you asking if the DSC pull server has this vulnerability? That shouldn't be a problem: "httpoxy does not affect any Microsoft Web Frameworks".

The topic ‘httpoxy vulnerability’ is closed to new replies.