On Fri, 4 Oct 2002 arkat_private wrote: > Sometimes. It is often prevented _before_ vulnerability is known if > the exploit breaks http protocol, otherwise you can block it with regexp. Every time I've looked at the protocol spec, it's been a sieve- there aren't length definitions in most of the specification. Could you provide some examples of things which break the protocol please? Paul ----------------------------------------------------------------------------- Paul D. Robertson "My statements in this message are personal opinions probertsat_private which may have no basis whatsoever in fact." probertsonat_private Director of Risk Assessment TruSecure Corporation _______________________________________________ firewall-wizards mailing list firewall-wizardsat_private http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
This archive was generated by hypermail 2b30 : Fri Oct 04 2002 - 07:42:22 PDT