Replies: 1 comment
-
"Transport" headers are defined by the HTTP spec. These are headers that indicate how the body of a request is transferred. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
The FAQ mentions you can't set "transport" headers such as
Content-Length
andTransfer-Encoding
, but what is the actual list that is off-limits? Transfer headers is basically every HTTP header, a lot of which you may want to manually set. Here are just a few that seem simillar that make sense to be able to manaully set:Content-Language
Content-Encoding
for if you are sending other file types, such as PNGVia
to blank out sources (idk why but people do it)X-Powered-By
is often blanked to avoid exposing server software in use, thus doing some work to mitigate automatic attack adapatation or expose what vulnerabilities you may be open to.Beta Was this translation helpful? Give feedback.
All reactions