CDN most afraid of leaking the user's original server address, once leaked, the so-called security services is non-existent.
Safe treasure the presence of multiple information disclosure vulnerabilities, the first report of the series!
Information disclosure vulnerability in one, according to the characteristics of the application determine the service side of the real environment.
Vulnerability to prove:
Determine the safety of the treasure used is nginx/0.7.67 reverse proxy.
The interpretation of the security treasure real application server environment Apache Tomcat/6.0.28
Such vulnerability is too much, slowly repair.