https://issues.apache.org/bugzilla/show_bug.cgi?id=49405
William A. Rowe Jr. <wrowe@apache.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |INVALID
--- Comment #1 from William A. Rowe Jr. <wrowe@apache.org> 2010-06-25 11:47:18 EDT ---
If the response isn't handled, the back end is in violation of the spec.
Accepting serious spec violations is addressed in the Watchfire request
smuggling report http://www.cgisecurity.com/lib/HTTP-Request-Smuggling.pdf
and providing the behavior you describe would make request injection much
simpler.
Closing as invalid and won't change.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
|