Wireshark mailing list archives

Re: Referer from https

From: Stephen Fisher <steve () stephen-fisher com>
Date: Thu, 10 Feb 2011 10:37:26 -0700

On Thu, Feb 10, 2011 at 09:16:05AM +0100, Sake Blok wrote:

Funny, I would have expected this to (a "https://xxx referer in the http request), but I just tested with Firefox and 
whenever I follow a link on an https page to a non-https page (either on the same site or a different site), there is 
just no "Referer:" header. I'm not sure how other browsers are dealing with this, so I checked the RFC[1]. It states 
in 15.1.3:

   Clients SHOULD NOT include a Referer header field in a (non-secure) 
   HTTP request if the referring page was transferred with a secure 
   protocol.

So there is your answer why you don't get the referer information.


Thanks for understanding the question better than me and posting the 
background RFC :).  I thought the question was "can you see the HTTP 
response redirect to the http site"

___________________________________________________________________________
Sent via:    Wireshark-users mailing list <wireshark-users () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
             mailto:wireshark-users-request () wireshark org?subject=unsubscribe

Current thread:

Referer from https Maverick (Feb 09)
- Re: Referer from https Stephen Fisher (Feb 09)
  - Re: Referer from https Maverick (Feb 09)
  - Re: Referer from https Sake Blok (Feb 10)
    - Re: Referer from https Stephen Fisher (Feb 10)
    - Re: Referer from https Maverick (Feb 10)