|
|
|
|
|
|
by voidnap
326 days ago
|
|
|
I scrolled down the page to figure out why all the hate, and the first link is to a page on Request Smuggling. Maybe I'm out of the loop but isn't request smuggling a vulnerability in HTTP proxies that try to convert HTTP2 to HTTP1? Why not showcase vulnerabilities in the HTTP1 spec that are solved in HTTP2? A doomsday clock for a vulnerability in a bad http proxy, doing something that should probably never be attemped anyway, is a bit dramatic. |
|
|