I feel that the WAF in this case would increase the likelihood of a
HTTP smuggling attack as it participates in the flow, and more than
likely interprets HTTP requests differently than pretty much
everything else out there. If they RST'd dodgy connections and left
alone all others, th...
I feel that the WAF in this case would increase the likelihood of a
HTTP smuggling attack as it participates in the flow, and more than
likely interprets HTTP requests differently than pretty much
everything else out there. If they RST'd dodgy connections and left
alone all others, th...
[ more ]