This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes JBoss/WildFly and the fly likes HTTP Request Forwarding (Web Proxy) Detected Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Products » JBoss/WildFly
Bookmark "HTTP Request Forwarding (Web Proxy) Detected" Watch "HTTP Request Forwarding (Web Proxy) Detected" New topic

HTTP Request Forwarding (Web Proxy) Detected

Sumedh Kakde

Joined: Oct 09, 2013
Posts: 2

I am using JBoss Version: jboss-5.1.0.GA.

I want to disable the HTTP Request Forwarding (Web Proxy) capability.

Right now Web Proxy may be enabled in the Jboss.

I want to know is there any way to disable the same.

Because of Web Proxy, any malicious attacker can attack other sites using Jboss server.

So that server may be vulnerable for Man in the Middle attack.

The server is scanned with IBM Security AppScan. It is giving the above vulnerability error.

Through JBoss server it is able to access external sites.

The same with Apache can be achieved with ProxyRequests off direcctive.

But, in our case , we are not using Apache web server. It is a standalone Jboss server.

Please suggest the solution to disable HTTP request forwarding.

I agree. Here's the link:
subject: HTTP Request Forwarding (Web Proxy) Detected
Similar Threads
Apache in DMZ and HTTPS
Hacked WebSites used to install parasites
Need an advice for the J2EE architecture. does soap can help in request redirection?
JBOSS - Disable HTTP Proxy Server Caching
HTTP Request froward to other application