Web Server Internal IP Address/Internal Network Name Disclosure Vulnerability
Igor Sysoev
igor at sysoev.ru
Fri May 27 20:50:54 MSD 2011
On Fri, May 27, 2011 at 09:24:09AM -0700, Mon Yang wrote:
> Hi,
>
> I did QualysGuard scan and it says "Web Server Internal IP
> Address/Internal Network Name Disclosure Vulnerability". It suggest
> for Apache, I need to:
>
>
> For Apache Web Server:
> Modify the Apache configuration file as follows:
> - Set "ServerName" to a proper FQDN.
> or
> - Use module mod_rewrite to modify the 3xx error message returned by the server.
>
> So what I need to do in nginx to fix this issue? Thank you.
If you proxy server via nginx, then probably something like this:
server {
server_name FQDN;
location / {
proxy_pass http://backend;
proxy_redirect http://FQDN/ http://backend/;
}
}
--
Igor Sysoev
More information about the nginx
mailing list