diff options
| author | Patrick Uiterwijk <puiterwijk@redhat.com> | 2017-08-02 21:08:20 +0000 |
|---|---|---|
| committer | Patrick Uiterwijk <puiterwijk@redhat.com> | 2017-08-02 21:08:29 +0000 |
| commit | 323dfd93ec01a4c45e9ff2d619b4967a89e2f7bd (patch) | |
| tree | 099b145734fc66a2afa4db342ad1ffcf9a7973d3 | |
| parent | 2ecfb4fdb42913f8c8231c36e648e71b057d4e51 (diff) | |
| download | ansible-323dfd93ec01a4c45e9ff2d619b4967a89e2f7bd.tar.gz ansible-323dfd93ec01a4c45e9ff2d619b4967a89e2f7bd.tar.xz ansible-323dfd93ec01a4c45e9ff2d619b4967a89e2f7bd.zip | |
Revert "Deploy httpd config to prevent varnish attacks"
This reverts commit ef52ab8e89380b0ac2f051b46303389bc6693462.
| -rw-r--r-- | roles/httpd/website/tasks/main.yml | 14 | ||||
| -rw-r--r-- | roles/httpd/website/templates/blockchunked.conf | 4 |
2 files changed, 0 insertions, 18 deletions
diff --git a/roles/httpd/website/tasks/main.yml b/roles/httpd/website/tasks/main.yml index 641457b83..12bc2333e 100644 --- a/roles/httpd/website/tasks/main.yml +++ b/roles/httpd/website/tasks/main.yml @@ -52,20 +52,6 @@ - httpd - httpd/website -- name: Copy over varnish workaround for {{name}} - template: > - src=blockchunked.conf - dest=/etc/httpd/conf.d/{{name}}/blockchunked.conf - owner=root - group=root - mode=0644 - notify: - - reload proxyhttpd - tags: - - httpd - - httpd/website - - security/workaround - - name: And lastly, the robots.txt file copy: > src={{item}} diff --git a/roles/httpd/website/templates/blockchunked.conf b/roles/httpd/website/templates/blockchunked.conf deleted file mode 100644 index efae29c39..000000000 --- a/roles/httpd/website/templates/blockchunked.conf +++ /dev/null @@ -1,4 +0,0 @@ -# Workaround for https://www.varnish-cache.org/lists/pipermail/varnish-announce/2017-August/000722.html -<If "%{HTTP:Transfer-Encoding} == 'chunked'"> - Require all denied -</If> |