From owner-freebsd-security  Fri Nov 20 11:27:28 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id LAA06875
          for freebsd-security-outgoing; Fri, 20 Nov 1998 11:27:28 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from apollo.backplane.com (apollo.backplane.com [209.157.86.2])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA06865
          for <freebsd-security@FreeBSD.ORG>; Fri, 20 Nov 1998 11:27:26 -0800 (PST)
          (envelope-from dillon@apollo.backplane.com)
Received: (from dillon@localhost)
	by apollo.backplane.com (8.9.1/8.9.1) id LAA18418;
	Fri, 20 Nov 1998 11:26:38 -0800 (PST)
	(envelope-from dillon)
Date: Fri, 20 Nov 1998 11:26:38 -0800 (PST)
From: Matthew Dillon <dillon@apollo.backplane.com>
Message-Id: <199811201926.LAA18418@apollo.backplane.com>
To: Andrew McNaughton <andrew@squiz.co.nz>
Cc: Jeroen Ruigrok/Asmodai <asmodai@wxs.nl>, freebsd-security@FreeBSD.ORG,
        Per Kristian Hove <perhov@phys.ntnu.no>
Subject: Re: pkhttpd (Was: Would this make FreeBSD more secure?)
References:  <Pine.BSF.4.05.9811201914530.14008-100000@aniwa.sky>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

:> 
:> But 1.0 is nowdays still the basic right?
:
:1.0 is pretty much the entry level.  Any server should implement more or
:less all of it.  1.1 savvy browsers will work fine with 1.0 servers.  I
:regularly do manual HTTP 1.0 sessions for debugging cgi stuff, and for
:that I find that most of 1.0 is worth remembering the details.
:
:The 1.1 extensions are less important for simple web servers, but are
:important if you're setting up a proxy server.
:
:Andrew

    1.1 is fairly important for both, because not only does 1.1 hack, er, 'fix'
    the persistent connection protocol, it also requires the Host: header (1)
    so as clients conform to 1.1, the server is guarenteed the ability to 
    determine the virtual host from the Host: header rather then having to
    assign unique IP's to each virtual host.

    note(1): the server is required to return a failure code if the client
    says it is using HTTP/1.1 but does not supply a Host: mime header.

						-Matt

:
:To Unsubscribe: send mail to majordomo@FreeBSD.org
:with "unsubscribe freebsd-security" in the body of the message
:

    Matthew Dillon  Engineering, HiWay Technologies, Inc. & BEST Internet 
                    Communications & God knows what else.
    <dillon@backplane.com> (Please include original email in any response)    

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message