You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2010/08/26 06:37:59 UTC

DO NOT REPLY [Bug 49826] New: Malformed response message

https://issues.apache.org/bugzilla/show_bug.cgi?id=49826

           Summary: Malformed response message
           Product: Apache httpd-2
           Version: 2.3-HEAD
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Core
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: dallas.a.clement@gmail.com


I am seeing malformed response messages quite often when a client sends a
request that the server finds offensive.  The following response was received
after sending a bad request "GET  HTTP/1.1" to www.cnn.com.


<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>400 Bad Request</title>
</head><body>
<h1>Bad Request</h1>
<p>Your browser sent a request that this server could not understand.<br />
</p>
<hr>
<address>Apache Server at www.cnn.com Port 80</address>
</body></html>

Please note that the status line is entirely missing.

I have verified with Wireshark that these are the only bytes received from the
server in response to this request.

I have also seen these malformed responses for a variety of other client
misbehaviors.

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org

DO NOT REPLY [Bug 49826] Malformed response message

Posted by bu...@apache.org.

https://issues.apache.org/bugzilla/show_bug.cgi?id=49826

Ruediger Pluem <rp...@apache.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |INVALID

--- Comment #1 from Ruediger Pluem <rp...@apache.org> 2010-08-26 05:34:22 EDT ---
"GET  HTTP/1.1" is an (invalid) HTTP/0.9 request. Thus the server returns a
valid HTTP/0.9 response which has no status line by definition.

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org