- From: Poul-Henning Kamp <phk@phk.freebsd.dk>
- Date: Fri, 11 Jul 2014 20:09:00 +0000
- To: Martin Thomson <martin.thomson@gmail.com>
- cc: Jason Greene <jason.greene@redhat.com>, Greg Wilkins <gregw@intalio.com>, Jeff Pinner <jpinner@twitter.com>, HTTP Working Group <ietf-http-wg@w3.org>
In message <CABkgnnUeH-nVXmsC0GYd=UO6aSj+cbWk4a=weeBUyW50quVgdA@mail.gmail.com> , Martin Thomson writes: >This point: >> The current design handles this fairly well, at most one set of headers can >> be incomplete at any point in time (sending a large number of incomplete >> headers and keeping most of them incomplete most of the time is an >> excellent attack vector, which the design currently precludes). This would be even more the case if we insist, as proposed, that all headers go into a single frame. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD committer | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence.
Received on Friday, 11 July 2014 20:09:24 UTC