漏洞
ArcGIS Server mobile components do not function properly behind a double reverse proxy server configuration.
| 漏洞 ID 编号 | NIM077172 |
|---|---|
| 已提交 | January 19, 2012 |
| 上次修改时间 | June 5, 2024 |
| 适用范围 | ArcGIS Server (.NET) |
| 找到的版本 | 10.0 |
| 操作系统 | Windows OS |
| 操作系统版本 | 2008 64 Bit |
| 状态 | Known Limit |
附加信息
As of version 10.1, the Server Manager application built on the .NET Web ADF technology is no longer being developed or having issues fixed.解决办法
Eliminate the second hop reverse proxy, forwarding directly from the external reverse proxy to the internal non-standard HTTP port number.Per ESRI Deutchland:The /arcgis/mobile application uses the X-Forwarded-Host http header to generate its application URL. Because of the double reverse proxy, the contents of this header include both hosts in the chain and the mobile application cannot properly parse them both. It is possible to force apache to reply with only one host in the X-Forwarded-Host header with the following configuration:<Location /arcgis/mobile><IfModule mod_headers.c> RequestHeader unset X-Forwarded-Host Header set X-Forwarded-Host "<a href="http://ags.hannit.de" target="_blank">ags.hannit.de</a>" </IfModule></Location>重现步骤
漏洞 ID: NIM077172
软件:
- ArcGIS Server (.NET)
当漏洞状态发生变化时获得通知
发现关于本主题的更多内容
搜索相关信息
查找与此主题相关的培训
探索想法并提供反馈
获取来自 ArcGIS 专家的帮助
下载 Esri 支持应用程序