github/bettercap
1
0
Fork 0
mirror of https://github.com/bettercap/bettercap synced 2025-08-22 06:23:18 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

Remove Content-Length from response header

Browse source 
If the pre-stripped response has a content-length header, the returned response will forward the original content-length and that will results in an incorrect response.
This commit is contained in:
mo 2020-02-13 03:31:27 -06:00 committed by GitHub
commit 29656cdf25
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
modules/http_proxy/http_proxy_base_sslstriper.go
View file

@ -296,6 +296,7 @@ func (s *SSLStripper) fixResponseHeaders(res *http.Response) {
res.Header.Del("X-Download-Options") res.Header.Del("X-Download-Options")
res.Header.Del("X-Permitted-Cross-Domain-Policies") res.Header.Del("X-Permitted-Cross-Domain-Policies")
res.Header.Del("X-Xss-Protection") res.Header.Del("X-Xss-Protection")
res.Header.Del("Content-Length")
res.Header.Set("Allow-Access-From-Same-Origin", "*") res.Header.Set("Allow-Access-From-Same-Origin", "*")
res.Header.Set("Access-Control-Allow-Origin", "*") res.Header.Set("Access-Control-Allow-Origin", "*")
res.Header.Set("Access-Control-Allow-Methods", "*") res.Header.Set("Access-Control-Allow-Methods", "*")