diff mbox series

[2/4] httpd: disable sending ETag header completely

Message ID	8698f06c-19c9-1680-f179-4d50c00bed1a@ipfire.org
State	Accepted
Commit	59fa881ea7380b5ac5f283892c9c4882de6ff28a
Headers	Subject: [PATCH 2/4] httpd: disable sending ETag header completely To: development@lists.ipfire.org References: <0b270dd5-9a61-2901-c75e-8698dd4373e8@ipfire.org> From: =?utf-8?q?Peter_M=C3=BCller?= <peter.mueller@ipfire.org> Message-ID: <8698f06c-19c9-1680-f179-4d50c00bed1a@ipfire.org> Date: Mon, 12 Apr 2021 23:00:46 +0200 MIME-Version: 1.0 In-Reply-To: <0b270dd5-9a61-2901-c75e-8698dd4373e8@ipfire.org> Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 8bit Precedence: list Errors-To: development-bounces@lists.ipfire.org Sender: "Development" <development-bounces@lists.ipfire.org>
Series	[1/4] httpd: remove compatibility instructions for very old browsers \| [1/4] httpd: remove compatibility instructions for very old browsers [2/4] httpd: disable sending ETag header completely [3/4] httpd: apply the same security headers on the captive portal instance as we do elsewhere [4/4] httpd: delete comment blocks and unused directives from our configuration

Commit Message

Peter Müller April 12, 2021, 9 p.m. UTC

  These cause caching trouble and pose a potential security risk due to
exposing inode numbers of files within the Apache site directories on an
IPFire machine.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
---
 config/httpd/global.conf | 1 +
 1 file changed, 1 insertion(+)

diff mbox series

Patch

diff --git a/config/httpd/global.conf b/config/httpd/global.conf
index cc8000379..46878baf5 100644
--- a/config/httpd/global.conf
+++ b/config/httpd/global.conf
@@ -8,6 +8,7 @@  Include /etc/httpd/conf/hostname.conf
 HostnameLookups off
 AddHandler cgi-script .cgi
 EnableSendfile Off
+FileETag None
 
 # Always unset HTTP_PROXY variable, https://httpoxy.org
 RequestHeader unset Proxy early