DevOps & SysAdmins: nginx reverse proxy securitymetrics warning

It appears you have misinterpreted the information provided by our scanner. The nature of this vulnerability is not specific to ngnix. This vulnerability is the identification of a reverse proxy. This is identified using the TRACE Method (as identified by the CVE's indicated). Allowing the TRACE and/or TRACK methods to be enabled on your web server can be a security risk.

Also, the particular vulnerability test you have identified has not been run on our scanners since September of 2019, indicating you have outdated information. Our Scanner has been updated many times since the time of the report you are using. We are continuously updating our scanner to make it better.

Your complaint offers a software specific solution based on a software application not referred to in the plugin or the CVE's identified in the plugin. If you run a quick and generic google search for "reverse proxy" a lot of ngnix information will pop up but it is not pertinent in this situation.

securitymetrics