wohali commented on issue #856: Bypass authentication check for /_up
URL: https://github.com/apache/couchdb/pull/856#issuecomment-333575446
from IRC:
```irc
11:41 <+rnewson> hm, yes, I see your point.
11:41 <+Wohali> if i don't punch a hole through
couch_httpd
wohali commented on issue #856: Bypass authentication check for /_up
URL: https://github.com/apache/couchdb/pull/856#issuecomment-333412925
@rnewson Not sure which module you're referring to here. I _think_ the flow
looks something like:
`mochiweb` ? `chttpd:process_request` ? `chttp
wohali commented on issue #856: Bypass authentication check for /_up
URL: https://github.com/apache/couchdb/pull/856#issuecomment-333409951
Note that I'm worried about the precedent that this sets, but I do agree
that `_up` is an innocuous hole to punch through the authentication layer.
-
