mailing list archives
Re: IPS Evasion with the Apache HTTP Server
From: H D Moore <fdlist () digitaloffense net>
Date: Wed, 20 Jun 2007 10:37:12 -0500
Apparently I can't read before 10:00am :) 3APA3A corrected me, the RFC
states that there can actually be multiple CRLF before the start of the
request. Time to find some coffee...
Thanks for the feedback!
On Wednesday 20 June 2007 09:19, H D Moore wrote:
The note in RFC 2616, Section 4.1, refers to a single CRLF before the
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/