From 99cc25aba3d41835f690b25b4bc71b5a8450a4fe Mon Sep 17 00:00:00 2001
From: NotAShelf <raf@notashelf.dev>
Date: Fri, 2 May 2025 13:39:59 +0300
Subject: [PATCH 1/2] config: add new pattern

---
 src/config.rs | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/config.rs b/src/config.rs
index f4c40b2..726e793 100644
--- a/src/config.rs
+++ b/src/config.rs
@@ -187,6 +187,7 @@ impl Default for Config {
                 TrapPattern::as_plain("/.env"),
                 TrapPattern::as_plain("/config"),
                 TrapPattern::as_plain("/actuator/"),
+                TrapPattern::as_plain("/_profiler/phpinfo"),
                 // More aggressive patterns for various PHP exploits.
                 // XXX: I dedicate this entire section to that one single crawler
                 // that has been scanning my entire network, hitting 403s left and right

From 0a8d5ec13e65c5a09f82dc8ad00768d4f13be658 Mon Sep 17 00:00:00 2001
From: NotAShelf <raf@notashelf.dev>
Date: Fri, 2 May 2025 13:41:07 +0300
Subject: [PATCH 2/2] network: fix malformed headers in proxy handoffs

---
 src/network.rs | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/network.rs b/src/network.rs
index 56d6c65..226ed00 100644
--- a/src/network.rs
+++ b/src/network.rs
@@ -80,7 +80,9 @@ pub async fn handle_connection(
                     if header_end_pos == 0 {
                         if let Some(pos) = find_header_end(&request_data) {
                             header_end_pos = pos;
-                            break;
+                            // XXX: Breaking here appears to be malforming the request
+                            // and causing 404 errors.
+                            // So, continue reading the body if present but do not break.
                         }
                     }