Merge pull request #2618 from thezeroalpha/master

Fix security vulnerabilities in provided nginx configuration
2025-12-22 19:50:00 +00:00 · 2021-03-04 11:27:03 +01:00
parent 6ba37777f7 8736f5bd70
commit 1d10ae175c
4 changed files with 13 additions and 13 deletions
--- a/utils/templates/etc/nginx/default.apps-available/morty.conf
+++ b/utils/templates/etc/nginx/default.apps-available/morty.conf
@@ -3,7 +3,7 @@
 location /morty {
    proxy_pass         http://127.0.0.1:3000/;

-    proxy_set_header   Host             \$http_host;
+    proxy_set_header   Host             \$host;
    proxy_set_header   Connection       \$http_connection;
    proxy_set_header   X-Real-IP        \$remote_addr;
    proxy_set_header   X-Forwarded-For  \$proxy_add_x_forwarded_for;
--- a/utils/templates/etc/nginx/default.apps-available/searx.conf:filtron
+++ b/utils/templates/etc/nginx/default.apps-available/searx.conf:filtron
@@ -3,7 +3,7 @@
 location ${SEARX_URL_PATH} {
    proxy_pass         http://127.0.0.1:4004/;

-    proxy_set_header   Host             \$http_host;
+    proxy_set_header   Host             \$host;
    proxy_set_header   Connection       \$http_connection;
    proxy_set_header   X-Real-IP        \$remote_addr;
    proxy_set_header   X-Forwarded-For  \$proxy_add_x_forwarded_for;
@@ -11,6 +11,6 @@ location ${SEARX_URL_PATH} {
    proxy_set_header   X-Script-Name    ${SEARX_URL_PATH};
 }

-location ${SEARX_URL_PATH}/static {
-    alias ${SEARX_SRC}/searx/static;
+location ${SEARX_URL_PATH}/static/ {
+    alias ${SEARX_SRC}/searx/static/;
 }