--- Comment #3 from Christian Schmidt <> ---
AFAICT the Host header is already sanitized. All my attempts to inject invalid
characters in this header result in a "400 Bad Request" response.

However, I am new to Apache development, so I'd appreciate any guidance on how
to deal with this issue, i.e. which validation functions to use etc.

You are receiving this mail because:
You are the assignee for the bug.
To unsubscribe, e-mail:
For additional commands, e-mail:

Reply via email to