[Webappsec] [WEB SECURITY] script inside .txt file
bubbagump123 at gmail.com
Wed Apr 25 19:11:57 EDT 2007
This might be a little wacky, but what do you think of this potential
Configure the web server to return "Content-Type: text/html" for all files
that end in .txt. Then create a server module that HTML Encodes the
contents of all .txt files before delivering the content to the browser.
Would that work?
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Webappsec