mirrors/caddy-website
1
0
Fork 0
mirror of https://github.com/caddyserver/website.git synced 2025-06-14 10:14:49 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

per_host metrics may contain unconfigured hosts

Browse source 
Fixes caddyserver/caddy#7055.
This commit is contained in:
Max Chernoff 2025-06-10 01:40:47 -06:00
parent 72aa1b3281
commit 5a406933b7
No known key found for this signature in database
GPG key ID: 8FD44004DB2B757E
1 changed files with 2 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
src/docs/markdown/caddyfile/options.md
View file

@ -1028,6 +1028,8 @@ You can add the `per_host` option to label metrics with the host name of the met
}
```
Note that when you enable `per_host` metrics, Caddy will create `host` labels for _all_ requests that it receives, not just for host names that Caddy is configured to respond to. This means that an attacker can trivially add arbitrary and unlimited `host` labels to your metrics, simply by modifying the value of the `Host:` HTTP request header.
##### `trace`
Log each individual handler that is invoked. Requires that the log emit at `DEBUG` level ( You may do so with the [`debug` global option](#debug)).