HTTrack Website Copier
Free software offline browser - FORUM
Subject: Why is this URL valid?
Author: Robert Smith
Date: 03/05/2008 04:03
 
I'm sure this won't be an issue for everyone, but seems strange to me that URLs
that start with <http://file://> will actually do the return the file instead
of an invalid URL message or DNS error. We thought we were blocking everything
but "http" and "https" requests, but this type of URL got around our
whitelist.

httrack --get <http://file:///etc/passwd>

:-(

Just a good thing for others to know who are using httrack in their scripts.
 
Reply


All articles

Subject Author Date
Why is this URL valid?

03/05/2008 04:03




4

Created with FORUM 2.0.11