From 300ee918def62575cf46b6a4379454c389781830 Mon Sep 17 00:00:00 2001
From: bashrc <bob@libreserver.org>
Date: Fri, 17 Apr 2026 19:50:54 +0100
Subject: [PATCH] Another suspicious header string

---
 httpheaders.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/httpheaders.py b/httpheaders.py
index 6c0bd4ca7..f396bec6e 100644
--- a/httpheaders.py
+++ b/httpheaders.py
@@ -277,7 +277,8 @@ def contains_suspicious_headers(headers: {}) -> bool:
         return True
 
     headers_str = str(headers)
-    sus_strings = ('../../', '.php/', 'index.php', 'passwd=', 'PHPSESSID')
+    sus_strings = ('../../', '.php/', 'index.php', 'passwd=', 'PHPSESSID',
+                   '.local/')
     if string_contains(headers_str, sus_strings):
         return True