We should add code to error out (not even proxy unsigned) if the incoming request contains sxgrs. This is an indication of what is likely an infinite network loop. (This is a defense in depth against an error that is unlikely to occur in practice because the only forwarded request headers are user-agent, via, and whatever's listed in the forward_header_names config.).
This code sets or modifies
Via
to includesxgrs
.We should add code to error out (not even proxy unsigned) if the incoming request contains
sxgrs
. This is an indication of what is likely an infinite network loop. (This is a defense in depth against an error that is unlikely to occur in practice because the only forwarded request headers areuser-agent
,via
, and whatever's listed in theforward_header_names
config.).