[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kfm-devel
Subject:    Re: Fwd: Bug#27935: [PATCH] Anonymous Referrer Implementation
From:       Malte Starostik <malte () kde ! org>
Date:       2001-06-30 22:12:47
[Download RAW message or body]

On Samstag, 30. Juni 2001 21:25, Stephan Kulow wrote:
> ----------  Forwarded Message  ----------
>
> Subject: Bug#27935: [PATCH] Anonymous Referrer Implementation
> Date: Sat, 30 Jun 2001 19:19:54 +0000
> From: eperez@dei.inf.uc3m.es
> To: submit@bugs.kde.org
>
> Package: kdelibs
> Version: 2.1.2
>
> I have coded the http Referer Anonymously.
>
> The solution is sending for the URL http://www.server.com/path/file.ext
> Referer: http://www.server.com/path/
>
> This won't break very broken servers that need Referer
> and this path will keep user anonymity.
I like the idea, but this should be configurable (sigh). Not to add yet 
another option, but because some CGIs will fail if the referer is not what 
they expect. Those will break whoever broken such scripts might be called. 
(They don't really increase security as an "attacker" might send the desired 
referer anyway :)
-Malte

[prev in list] [next in list] [prev in thread] [next in thread]