https://bz.apache.org/bugzilla/show_bug.cgi?id=60704
--- Comment #5 from Michael <[email protected]> --- Today I faced another issue, that's confusing me even more. Testcase is apache 2.4.25, HttpProtocolOptions set to "Unsafe LenientMethods Allow0.9". 1) curl -H "Host: my_invalid_hostname" -v http://localhost/ Returns: HTTP/1.1 200 OK OK - Unsafe mode allows a Host header containing a underline. 2) curl -H "Accept<TAB>: application/xml" -v http://localhost/ Returns: HTTP/1.1 400 Bad Request Debug output: Request header field name is malformed: Accept\t: application/xml Looking into the sourcecode (server/protocol.c, line 1130) the message "Request header field name is malformed" only will be logged in strict mode, but not in unsafe mode .. Best regards, Michael -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
