W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2021

Re: #904: Content on GET requirement strength

From: Willy Tarreau <w@1wt.eu>
Date: Fri, 23 Jul 2021 07:18:09 +0200
To: Amos Jeffries <squid3@treenet.co.nz>
Cc: ietf-http-wg@w3.org
Message-ID: <20210723051809.GA5865@1wt.eu>
Hi Amos,

On Fri, Jul 23, 2021 at 05:05:12PM +1200, Amos Jeffries wrote:
> On 23/07/21 1:56 pm, Mark Nottingham wrote:
> > We seem to have converged on a resolution here:
> >    https://github.com/httpwg/http-core/pull/906
> > 
> > Please take a look and if you have questions, comments or objections, let us know.
> > 
> 
> 
> On this topic, Squid-6 is updated to enforce rejection of payloads for these
> methods in messages labeled as HTTP/1.0 or older.
> 
> Use of at least HTTP/1.1 and appropriate framing headers are required for
> these methods to transfer a payload through Squid.

Great, I think it's a very reasonable approach and I intend to do
the same (as well as enforcing close on T-E with 1.0 or with C-L
according to #879) in haproxy.

Willy
Received on Friday, 23 July 2021 05:18:48 UTC

This archive was generated by hypermail 2.4.0 : Friday, 23 July 2021 05:18:49 UTC