Full Disclosure mailing list archives
Re: IPS Evasion with the Apache HTTP Server
From: H D Moore <fdlist () digitaloffense net>
Date: Wed, 20 Jun 2007 10:37:12 -0500
Apparently I can't read before 10:00am :) 3APA3A corrected me, the RFC states that there can actually be multiple CRLF before the start of the request. Time to find some coffee... Thanks for the feedback! -HD On Wednesday 20 June 2007 09:19, H D Moore wrote:
The note in RFC 2616, Section 4.1, refers to a single CRLF before the Request-Line.
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- IPS Evasion with the Apache HTTP Server H D Moore (Jun 19)
- Re: IPS Evasion with the Apache HTTP Server coderman (Jun 19)
- Re: IPS Evasion with the Apache HTTP Server Valdis . Kletnieks (Jun 19)
- Re: IPS Evasion with the Apache HTTP Server coderman (Jun 19)
- Re: IPS Evasion with the Apache HTTP Server Valdis . Kletnieks (Jun 19)
- Re: IPS Evasion with the Apache HTTP Server 3APA3A (Jun 20)
- Re: IPS Evasion with the Apache HTTP Server Jamie Riden (Jun 20)
- Re: IPS Evasion with the Apache HTTP Server 3APA3A (Jun 20)
- Re: IPS Evasion with the Apache HTTP Server H D Moore (Jun 20)
- Re: IPS Evasion with the Apache HTTP Server H D Moore (Jun 20)
- Re: IPS Evasion with the Apache HTTP Server Jamie Riden (Jun 20)
- Re: IPS Evasion with the Apache HTTP Server coderman (Jun 19)