You will find if you look at your error_log, this is not a bug. File name too long: access to /////* This is correct behavior of apache. --- Erik Parker --- EP> Kerozene (kerozeneat_private) K wrote today: K> Hackemate Labs - Advisory K> http://hackemate.com.ar research K> K> K> This test was done in an Apache 1.3.22 with PHP/4.0.6 K> Installed in Windows 98 Second Edition: K> K> When you make the next request, it takes you to the K> index of the site, the main page, as if you hadnīt put K> the bars. This request has 232 bars K> K> http://127.0.0.1//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// K> K> OK K> K> But if you make a request with 233 bars it shows you the K> Forbidden messsage. Here is the request with 233 bars. K> K> http://127.0.0.1///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// K> K> And the result: K> K> Forbidden K> You don't have permission to access ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// on this server. K> K> K> -------------------------------------------------------------------------------- K> K> Apache/1.3.22 Server at localhost Port 80 K> K> K> ***** K> Making this test I also realised that Internet Explorer doesnīt let K> you put an adress of more than 2047 characters in the URL bar K> K> K> Kerozene 1999-2002 c0oL! K> kerozeneat_private K> www.hackemate.com.ar K> K>
This archive was generated by hypermail 2b30 : Thu Mar 07 2002 - 13:42:06 PST