We have spent days working on an issue where when we curl’d our sites we were getting the error SL read: error:00000000:lib(0):func(0):reason(0), errno 104 Cert was ok but Curl could not touch the site… Found out it was due to a misconfiguration in NGINX. For you that care and find this, to fix make sure […]
A possible fix for CVE-2000-0649 in NGINX
We have been working on shoring up our servers for a specific client. Their latest scan showed an issue with CVE-2000-0649 “Web Server Internal IP Address/Internal Network Name Disclosure Vulnerability” We looked and looked and there is not documentation to fix the issue. We could replicated it using https://www.exploit-db.com/exploits/20096/ After days of trying to figure it out we finally […]