RE: [users@httpd] + in URL

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "'users@xxxxxxxxxxxxxxxx'" <users@xxxxxxxxxxxxxxxx>
Subject: RE: [users@httpd] + in URL
From: Jacob Eshed <jacob.eshed@xxxxxxxxxxxxxx>
Date: Mon, 21 Nov 2005 07:44:52 +0200
Delivered-to: apmail-httpd-users-archive@xxxxxxxxxxxxxx
Delivered-to: apmail-httpd-users-archive@xxxxxxxxxxxxxxxx
Delivered-to: mailing list users@xxxxxxxxxxxxxxxx
Mailing-list: contact users-help@xxxxxxxxxxxxxxxx; run by ezmlm
Reply-to: users@xxxxxxxxxxxxxxxx

Title: RE: [users@httpd] + in URL

Hi Bill,
Thank you very much for your brief and helpful explanation.

Sincerely,
Jacob Eshed

-----Original Message-----
From: William A. Rowe, Jr. [mailto:wrowe@xxxxxxxxxxxxx]
Sent: Monday, November 21, 2005 6:35 AM
To: users@xxxxxxxxxxxxxxxx
Subject: Re: [users@httpd] + in URL

Jacob Eshed wrote:
> Hi Bill,
> Thanks for your prompt answer.
> The '&sub_cat=Art + Design' was entered as parameter in Microsoft
> Internet Browser 6. as a url address:
>
> <_http://server.name:port/V/?func=some_function&mode=category&category
> =Category
> Name&sub_cat=Art + Design&restricted=all_
> <http://server.name:port/V/?func=some_function&mode=category&category=Category
> Name&sub_cat=Art + Design&restricted=all>>

So the user, if they TYPED this into the URL bar, actually placed three spaces in a row. Any '+' symbols in a query argument (the portion of the URI following the '?') is clearly defined by the HTTP URI specification to indicate a space.

(This is historically because spaces are altogether invalid in a URI, in spite of MS IIS's broken implementation, and because the original query arguments were assumed to be search keywords of some sort, meaning "search.cgi?help+http" was expected to be searching the help and the http keywords, seperated by a space.)

There is no bug, only user error here.

To prove it, create a form submission html page, and in the text of the query input text, type test+me. You will see that all browsers escape the '+' to ensure it's treated as a literal '+'.

Bill

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx

" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx

--------------------------------------------------------
This message has been scanned for viruses and
dangerous content by Ex Libris Ltd, and is
believed to be clean.
--------------------------------------------------------

-----------------------------------------------------------------
This message has been scanned for viruses and
dangerous content by Ex Libris Ltd, and is
believed to be clean.
-----------------------------------------------------------------

Prev by Date: Re: [users@httpd] + in URL
Next by Date: RE: [users@httpd] About Access Log
Previous by thread: Re: [users@httpd] + in URL
Next by thread: [users@httpd] Problem with the fwrite function (not as simple as it sounds though)
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]