lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <003701c3f90b$ab41d280$e6f08252@GAZPA>
From: gazpa at euskalnet.net (Alain)
Subject: RE: ) Firewalls

----- Original Message ----- 
From: "Osigbemeh Okenyi" <Osigbemeh.Okenyi@...nel.ac.uk>
To: "ald2003" <ald2003@...rs.sourceforge.net>; "opticfiber"
<opticfiber@...sight.net>; "martin f krafft" <madduck@...duck.net>;
"full-disclosure" <full-disclosure@...ts.netsys.com>
Sent: Sunday, February 22, 2004 2:43 AM
Subject: [Full-Disclosure] RE: ) Firewalls


> 1) How do you get to a site via http without having the site's name appear
in the out going http request?
If you refer to 'Host: www.site.com'  header, it is used only in HTTP1.1 ,
in HTTP1.0 is not used. But can be a problem if destination host is using
virtualhost's.
I'm not absolutely sure about that... google about rfc's in that area.


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ