view src/os/win32/nginx_icon16.xpm @ 8526:bea0f9e5c309

Disabled requests with both Content-Length and Transfer-Encoding. HTTP clients are not allowed to generate such requests since Transfer-Encoding introduction in RFC 2068, and they are not expected to appear in practice except in attempts to perform a request smuggling attack. While handling of such requests is strictly defined, the most secure approach seems to reject them.
author Maxim Dounin <mdounin@mdounin.ru>
date Mon, 28 Jun 2021 18:01:06 +0300
parents 4ac89c5aa10d
children
line wrap: on
line source

/* XPM */
static char * nginx_xpm[] = {
"16 16 2 2",
/* colors */
"   c none",
"GG c #009900",
/* pixels */
"                                ",
"        GGGGGGGGGGGGGGGG        ",
"        GGGGGGGGGGGGGGGG        ",
"      GGGGGGGGGGGGGGGGGGGG      ",
"      GGGGGG        GGGGGG      ",
"    GGGGGG            GGGGGG    ",
"    GGGGGG                      ",
"  GGGGGG      GGGGGGGGGGGGGGGG  ",
"  GGGGGG    GGGGGGGGGGGGGGGGGG  ",
"    GGGGGG    GGGGGGGGGGGGGG    ",
"    GGGGGG            GGGGGG    ",
"      GGGGGG        GGGGGG      ",
"      GGGGGGGGGGGGGGGGGGGG      ",
"        GGGGGGGGGGGGGGGG        ",
"        GGGGGGGGGGGGGGGG        ",
"                                "
};