Return 403 to non HEAD|GET requests in HAProxy tls frontend
Open, Needs TriagePublic
Actions

Edit Task
Edit Related Tasks...
Create Subtask
Edit Parent Tasks
Edit Subtasks
Merge Duplicates In
Close As Duplicate
Edit Related Objects...
Edit Commits
Edit Mocks
Mute Notifications
Protect as security issue
Award Token
Flag For Later

Assigned To

Authored By

	Fabfur
	Mar 22 2024, 11:52 AM

Description

Currently we return 403 for non HEAD|GET verbs only in the HAProxy http frontend, just before the redirect to https.

We should add this filter in the tls frontend too, but only after being certain that Benthos correctly parses and send these requests to Kafka for later analysis (currently we have non HEAD|GET requests in our analytics platforms, when they reach Varnish).

Event Timeline

Fabfur created this task.Mar 22 2024, 11:52 AM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 22 2024, 11:52 AM

Return 403 to non HEAD|GET requests in HAProxy tls frontendOpen, Needs TriagePublicActions

Description

Event Timeline

Return 403 to non HEAD|GET requests in HAProxy tls frontend
Open, Needs TriagePublic
Actions