git.ipfire.org Git - thirdparty/haproxy.git/commit

]> git.ipfire.org Git - thirdparty/haproxy.git/commit

projects / thirdparty / haproxy.git / commit

author	Willy Tarreau <w@1wt.eu>
	Sat, 7 Jan 2012 22:54:13 +0000 (23:54 +0100)
committer	Willy Tarreau <w@1wt.eu>
	Sat, 7 Jan 2012 22:55:20 +0000 (23:55 +0100)
commit	422246eb265bc0cfebb5c872ba3d4289798f9cd3
tree	db32eaa2548697679ce17255e7e242b069850fbc	tree \| snapshot
parent	2e9506d7717ee0a17a044a334f6b1cddf46a00a6	commit \| diff

MEDIUM: http: block non-ASCII characters in URIs by default

These ones are invalid and blocked unless "option accept-invalid-http-request"
is specified in the frontend. In any case, the faulty request is logged.

Note that some of the remaining invalid chars are still not checked against,
those are the invalid ones between 32 and 127 :

34 ('"'), 60 ('<'), 62 ('>'), 92 ('\'), 94 ('^'),
96 ('`'), 123 ('{'), 124 ('|'), 125 ('}')

Using a lookup table might be better at some point.

doc/configuration.txt		diff \| blob \| blame \| history
src/proto_http.c		diff \| blob \| blame \| history

Mirror of https://github.com/haproxy/haproxy.git

RSS Atom