Connected: An Internet Encyclopedia
15.9 Location Headers and Spoofing
Up:
Connected: An Internet Encyclopedia
Up:
Requests For Comments
Up:
RFC 2068
Up:
15 Security Considerations
Prev: 15.8 DNS Spoofing
Next: 16 Acknowledgments
15.9 Location Headers and Spoofing
15.9 Location Headers and Spoofing
If a single server supports multiple organizations that do not trust
one another, then it must check the values of Location and Content-
Location headers in responses that are generated under control of
said organizations to make sure that they do not attempt to
invalidate resources over which they have no authority.
Next: 16 Acknowledgments
Connected: An Internet Encyclopedia
15.9 Location Headers and Spoofing