From d467b16bf2dbeb8673f552b69639703f66c8297d Mon Sep 17 00:00:00 2001
From: Damian Mooyman <damian@silverstripe.com>
Date: Fri, 29 May 2015 11:46:47 +1200
Subject: [PATCH] Ensure BlockUntrustedProxyHeaders is enabled by default

---
 .htaccess | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.htaccess b/.htaccess
index 0b2cae6..81693c6 100644
--- a/.htaccess
+++ b/.htaccess
@@ -27,7 +27,7 @@ ErrorDocument 500 /assets/error-500.html
 	# Ensure that X-Forwarded-Host is only allowed to determine the request
 	# hostname for servers ips defined by SS_TRUSTED_PROXY_IPS in your _ss_environment.php
 	# Note that in a future release this setting will be always on.
-	#SetEnv BlockUntrustedProxyHeaders true
+	SetEnv BlockUntrustedIPs true
 </IfModule>
 
 <IfModule mod_rewrite.c>