• Overview
    Key features
    • Observability
    • Auto-scaling
    • Multiframework
    • Security
    Frameworks
    • Django
    • Next.js
    • Drupal
    • WordPress
    • Symfony
    • Magento
    • See all frameworks
    Languages
    • PHP
    • Python
    • Node.js
    • Ruby
    • Java
    • Go
  • Industries
    • Consumer Goods
    • Media/Entertainment
    • Higher Education
    • Government
    • Ecommerce
    Use cases
  • Pricing
  • Agencies
    Resources
  • Overview
    Learn
    Company
    Featured articles
    • Switching to Platform.sh can help IT/DevOps organizations drive 219% ROI
    • Organizations, the ultimate way to manage your users and projects
  • Support
  • Docs
  • Login
  • Watch a demo
  • Free trial
Blog
Meet Upsun. The new, self-service, fully managed PaaS, powered by Platform.sh.Try it now
Blog

Httpoxy or how Platform.sh keeps your applications safe

php
20 July, 2016
Augustin Delaporte
Augustin Delaporte
VP Product

Keeping your applications running and secure remain our main goal!

This week, Httpoxy, an important security vulnerability, has just been disclosed.

It affects every application running in CGI, which includes PHP.

As soon as we heard about it, we deployed a new version of our router container to block the Proxy header from incoming HTTP headers.

Here is what Httpoxy website says:

If you’re running PHP or CGI, you should block the Proxy header now.

This fix has already been deployed in every Platform.sh region and we have refreshed all your projects so that you don’t even need to redeploy your applications in order to get the security in place.

In other words: You are safe!.

Get the latest Platform.sh news and resources
Subscribe

Related Content

Running with FrankenPHP on Platform.sh

Running with FrankenPHP on Platform.sh

A festive treat: PHP 8.3 is already available on Platform.sh

A festive treat: PHP 8.3 is already available on Platform.sh

Blackfire is now even closer to home!

Blackfire is now even closer to home!

Leader Winter 2023
Company
AboutSecurity and complianceTrust CenterCareersPressContact us
Compare
Heroku alternativePantheon alternativeAcquia alternativeAWS alternativeGCP alternativeAzure alternativeManaged hostingKubernetes alternativeFly.io alternativeRender alternative
Resources
BlogROI CalculatorDownloadsDemosSupport CenterWhat is FleetOps?CI/CD on Platform.shPartner portalRegions map
Product
PricingWhat is Platform.sh?What can you run on Platform.sh?Drupal cloud hostingWordPress cloud hostingResources Auto-ScalingObservability Suite
Thank you for subscribing!
  •  
Field required
Leader Winter 2023
System StatusPrivacyTerms of ServiceImpressumWCAG ComplianceAcceptable Use PolicyManage your cookie preferencesReport a security issue
© 2024 Platform.sh. All rights reserved.
Supported by Horizon 2020's SME Instrument - European Commission 🇪🇺