generic-library/curl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

5.6 Refuse "downgrade" redirects

Browse Source
This commit is contained in:
Daniel Stenberg 2015-05-31 00:39:19 +02:00
parent 9a0a16a61c
commit 4e7c3c12d3
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
docs/TODO
View File

@ -49,6 +49,7 @@
5.3 Rearrange request header order 5.3 Rearrange request header order
5.4 SPDY 5.4 SPDY
5.5 auth= in URLs 5.5 auth= in URLs
5.6 Refuse "downgrade" redirects
6. TELNET 6. TELNET
6.1 ditch stdin 6.1 ditch stdin
@ -348,6 +349,14 @@ This is not detailed in any FTP specification.
Additionally this should be implemented for proxy base URLs as well. Additionally this should be implemented for proxy base URLs as well.
5.6 Refuse "downgrade" redirects
See https://github.com/bagder/curl/issues/226
Consider a way to tell curl to refuse to "downgrade" protocol with a redirect
and/or possibly a bit that refuses redirect to change protocol completely.
6. TELNET 6. TELNET
6.1 ditch stdin 6.1 ditch stdin