After further review, I noticed that the userAgent (ua) is set by the SOAP client which may explain the blank ua= field. How could the IP address be set to the servers IP address instead of the client's IP address. I am concerned the <targetServer> Proxy Mechanism for authentication requests is a potential vulnerability. Any ideas? |