Bugtraq mailing list archives
Re: Fixing the NCSA HTTPD 1.3
From: rens () imsi com (Rens Troost)
Date: Wed, 15 Feb 1995 09:29:06 -0500
"Thomas" == Thomas Lopatic <lopatic () dbs informatik uni-muenchen de> writes:
Thomas> 2. have getline() read only 1000 characters instead of Thomas> an official patch is ready. Does anyone see any problems Thomas> with this? This would limit URLS to 1000 characters, would it not? This would be bad if you have a stateless server invoked through CGI where the session state is stored in a (pretty long) URL. -Rens
Current thread:
- Vulnerability in NCSA HTTPD 1.3 Thomas Lopatic (Feb 13)
- Re: Vulnerability in NCSA HTTPD 1.3 Paul 'Shag' Walmsley (Feb 13)
- Re: Vulnerability in NCSA HTTPD 1.3 Christopher Davis (Feb 14)
- Re: Vulnerability in NCSA HTTPD 1.3 Robert M. Haas (Feb 14)
- Re: Vulnerability in NCSA HTTPD 1.3 Christopher Davis (Feb 16)
- Re: Vulnerability in NCSA HTTPD 1.3 Christopher Davis (Feb 14)
- Fixing the NCSA HTTPD 1.3 Thomas Lopatic (Feb 14)
- Re: Fixing the NCSA HTTPD 1.3 Paul 'Shag' Walmsley (Feb 15)
- Re: Fixing the NCSA HTTPD 1.3 Rens Troost (Feb 15)
- Re: Fixing the NCSA HTTPD 1.3 Paul 'Shag' Walmsley (Feb 15)
- For NCSA Http_1.05a Everett F Batey WA6CRE (Feb 15)
- Sendmail 8.6.9 Nathan Lawson (Feb 14)
- Re: Sendmail 8.6.9 Perry E. Metzger (Feb 14)
- Re: Sendmail 8.6.9 Tom Fitzgerald (Feb 14)
- Re: Sendmail 8.6.9 Perry E. Metzger (Feb 15)
- Re: Vulnerability in NCSA HTTPD 1.3 Paul 'Shag' Walmsley (Feb 13)
- <Possible follow-ups>
- Re: Vulnerability in NCSA HTTPD 1.3 Edy (Feb 14)