cURL / Mailing Lists / curl-users / Single Mail

curl-users

Re: curl and http redirects; possible security implications

From: Alex Bligh <alex_at_alex.org.uk>
Date: Sat, 24 Apr 2010 10:20:44 +0100

--On 24 April 2010 11:13:39 +0200 Daniel Stenberg <daniel_at_haxx.se> wrote:

>> My worry is that people will log stderr in any sensibly written script,
>> and thus the next thing they will ask for is a switch to silence the
>> log. If we give them that, we might as well give them a switch to turn
>> the check off.
>
> I firmly believe we should do it either way and not both. Ie we either
> allow misspelled/upcoming protocol names or we bail out on them.

OK. So if I drop the ~ modifier, but make it warn rather than error
on unknown protocols, you will take the patch?

-- 
Alex Bligh
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ:        http://curl.haxx.se/docs/faq.html
Etiquette:  http://curl.haxx.se/mail/etiquette.html

Received on 2010-04-24

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: curl and http redirects; possible security implications"
Previous message: Alex Bligh: "Re: curl and http redirects; possible security implications"
In reply to: Daniel Stenberg: "Re: curl and http redirects; possible security implications"
Next in thread: Daniel Stenberg: "Re: curl and http redirects; possible security implications"
Reply: Daniel Stenberg: "Re: curl and http redirects; possible security implications"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]