On Mon, 27 Jan 2003, Thomas Eibner wrote: > So, because a programmer doesn't check the validity of the input he gets > it's a bug that should be fixed in Apache? Maybe someone should make > sure that the same thing can't happen with allowing CGI input going > straight into a form.. oh wait. > I don't see anyone from dev@httpd wanting to "fix" this bogus error when > it's really just doing what the programmer wants to do (when he is not > validating the input).
The programmer wants to output a header. If he accidentally tries to output something thats not a header he actually ends up outputting body. Thats a bug. > Tables should have the ability to store both \r > and \n's IMHO. I never said otherwise. The patch I sent to dev@ only affects outgoing headers. There is no legitimate use for allowing multiple line feeds in headers. Though I do realise now that my patch is wrong. It needs to check for \n in the header value followed by something that isn't space or htab. I'll fix that and re-send to the list. -- <!-- Matt --> <:->get a SMart net</:-> Spam trap - do not mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
