From e0f25da4bd05454dfe7794b40c6b9cd48163e62f Mon Sep 17 00:00:00 2001
From: Simon Rondelez <simonrondelez@me.com>
Date: Tue, 19 Jul 2016 10:51:51 +0200
Subject: [PATCH] Patch httpoxy thry mod_security

---
 templates/mod/security.conf.erb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/templates/mod/security.conf.erb b/templates/mod/security.conf.erb
index 5df57dffed..5505f2140a 100644
--- a/templates/mod/security.conf.erb
+++ b/templates/mod/security.conf.erb
@@ -34,6 +34,9 @@
       IH %{MULTIPART_INVALID_HEADER_FOLDING}, \
       FL %{MULTIPART_FILE_LIMIT_EXCEEDED}'"
 
+    SecRule &REQUEST_HEADERS:Proxy "@gt 0" "id:1000005,log,deny,msg:'httpoxy denied'"
+
+
     SecRule MULTIPART_UNMATCHED_BOUNDARY "!@eq 0" \
       "id:'200003',phase:2,t:none,log,deny,status:44,msg:'Multipart parser detected a possible unmatched boundary.'"