Re: IPS Content filtering techniques

["Skough Axel U/IT-S" <axel.skough () scb se>]

Hi, 

Does really nobody know anything about a Web proxy product filtering on MIME Content-Type setting and capable to omit 
this check when the MIME Content-Length setting in force appears to be zero? The RFC 2616 states that the Content-Type 
header statement can be omitted in this situation and, indeed, it has no meaning as the data section is declared to be 
of length zero.

Otherwise the data section should of course be in general be assumed to be of type "application/octet-stream" but when 
no data section is present it is obviously no problem in bypassing the Content-Type check! Thus, there are no data to 
prevent entering for in this situation, but the packet in force may have othre meanings such as redirect etc.

I would appreciate any comments in this matter! 

Best regards

Axel Skough
Research & Development
Information Technology
Statistics Sweden
Box 24300 
SE-10451 Stockholm
S  W  E  D  E  N

Visitor's address: 
Karlavägen 100, Stockholm, Sweden

E-mail:  axel.skough () scb se
Fax:     +46 8 5069 4599
SMS:     +46 70 577 1727

No rights may be derived from the contents of this e-mail message. 

The information in this e-mail message is intended only for the addressee. Statistics Sweden cannot vouch for the 
correctness and completeness of the contents of e-mail messages, nor for the timely receipt thereof. 
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards