scottklement.com

changed HTTPAPIR4 HTTPAPI Ver 1.48 as below c eval wwReq = 'CONNECT ' + %trim(peHost) c + ':' + %trim(%editc(wwPort:'L')) c + ' HTTP/1.1' C + CRLF c if pePort = 0 c eval wwReq = wwReq C + 'Host: ' + %trim(peHost) xx01 c***************************** + ' HTTP/1.1' C + CRLF c else c eval wwReq = wwReq ...

basically it seems if i send an HTTP eg: post to server mywebsite.com but via a proxy the proxy_tunnel() code generates headers such as CONNECT mywebsite.com:443 HTTP/1.1 Host: mywebsite.com HTTP/1.1 User-Agent: http-api/1.48 Proxy-Connection: keep-alive Security team are implementing checks on prox...

Our security team have now informed us that they are tightening controls in the proxy server configuration to block requests showing domain fronting behavior as this can be exploited and cause a potential security risk. Specifically they say the HTTPAPI traffic via proxy will be blocked because the ...