cubicweb #4205948 CORS does not work behind a reverse proxy [rejected]

Behind a reverse proxy, the CORS related code falsely detect a DNS rebinding attack:

2014-07-28 19:26:12 - (cubicweb.web) INFO: cross origin resource sharing detected possible DNS rebinding attack Host header != host of base_url: !=
2014-07-28 19:26:12 - (cubicweb.web) INFO: Cross origin resource sharing failed: Host header and hostname do not match

Also, such a message (warning about a possible attack) should be a warning, not an info.

done in<not specified>
load left0.000
closed by<not specified>