It sounds like this was the root of the problem: *> But IIS was misconfigured to... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		_xhok on July 27, 2015 \| parent \| context \| favorite \| on: Anatomy of an Attack: How I Hacked StackOverflow (... It sounds like this was the root of the problem: > But IIS was misconfigured to rewrite Remote_Addr from X-Forwarded-For if it existed. Does anyone know why that might've happened? Is this something IIS does by default, something it inadvertently encourages, etc.? And is there another example of a web server doing something like this?

sparaker on July 27, 2015 [–]

I think if its running infront of a proxy this is the default behavior. I think this is configured in other web servers like nginx, etc.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact