On 2001.12.07, Peter M. Jansson <[EMAIL PROTECTED]> wrote:
> The only concern I have is a security concern
I looked at security as a possibility as well and since his solution
uses DStrings (which are growable, right?) then you don't have to
necessarily worry about buffer overflow.
However, resource starvation/denial of service is a serious
potential problem. Fire up a couple hundred connections where
you feed a very large Host: string ...
What I would be concerned with is the fact that Greg's solution
hardcodes the protocol in ("http://";) which would break if the
server was running HTTPS, but then you wouldn't be doing
software virtual-hosting anyway, so maybe it's a moot point.
-- Dossy
--
Dossy Shiobara mail: [EMAIL PROTECTED]
Panoptic Computer Network web: http://www.panoptic.com/
"He realized the fastest way to change is to laugh at your own
folly -- then you can let go and quickly move on." (p. 70)
