[3125] in WWW Security List Archive
Potential threat with some HTTP REQUEST METHODS?
daemon@ATHENA.MIT.EDU (Denis Dion Jr.)
Tue Oct 1 22:48:31 1996
Date: Tue, 1 Oct 1996 20:12:13 -0400 (EDT)
From: "Denis Dion Jr." <ddion@gel.ulaval.ca>
To: www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
Hi,
There's A LOT of informations about both HTTP request methods GET and
POST. Of course, these are used 99% of the time.
But what about these methods? PUT, HEAD, DELETE, LINK, UNLINK
There doesn't seem to be any available information, even though I just
read that some of these methods are used to TELL THE SERVER TO
MODIFY A LINK OR A FILE ON THE SERVER... Seems pretty dangerous isn't it???
So, I'd REALLY appreciate if someone could send me information about
these annoying request methods. If they represent potential threat, why
aren't they more well documented???
(Sorry If something has already been posted on this subject.)
Thanks a lot.
Denis Dion Jr.
Computer Vision and Systems Lab
Dept. of Electrical Engineering, Laval University
Quebec, Canada.
