You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2004/08/25 07:52:05 UTC

DO NOT REPLY [Bug 29554] - ProxyPass mishandles escaped characters : and /

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=29554>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=29554

ProxyPass mishandles escaped characters : and /





------- Additional Comments From mike@hyperreal.org  2004-08-25 05:52 -------
The mishandled escapes occur even with a regular proxy under Apache 1.3.31, 
not just with a ProxyPass proxy.

In my httpd.conf I have 

    <Directory proxy:*>
        Order deny,allow
        Deny from all
        Allow from .my.trusted.domain
        Allow from .other.trusted.domain
    </Directory>

<VirtualHost *:15151>
    ProxyRequests On
    ProxyVia On
    NoCache *
</VirtualHost>

When I send a request to this proxy for http://myserver/something-with-%2B, 
the proxy asks myserver for /something-with-+, where the %2B was mistakenly 
decoded. This situation is like the one reported in #13577, but that one is 
marked as fixed and applies to Apache 2.0 only, and this bug (29554) mentions 
ProxyPass only. If the problem is more general, then it should be fixed more 
generally, not just for the ProxyPass situation.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org