4 May 18:49
HTTP 413,417 instead of 400?
From: Vinci <vinci.wong <at> polyu.edu.hk>
Subject: HTTP 413,417 instead of 400?
Newsgroups: gmane.comp.apache.mod-security.user
Date: 2008-05-04 16:49:46 GMT
Subject: HTTP 413,417 instead of 400?
Newsgroups: gmane.comp.apache.mod-security.user
Date: 2008-05-04 16:49:46 GMT
Hi all, I am trying to testing my server ability with the mod_security. While testing, I found double Content-Length will give me http 413 instead of http 400, which I found in both access log and audit log; but the browser give me http 413 (This appear in another server as well) Also, same condition appear in Expect attack, 417 received instead of 400, which I trying to insert javascript code in the Expect header field. Can anybody give me explanation? I am using the default rule set with default setting only. Thank you, Vic ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
RSS Feed