If I uncheck the "Enable anonymous access" checkbox in IIS, so as to password protect a site, i.e. by restricting read access to designated Windows accounts, does the resulting password dialogue which is then presented to all anonymous http requests, represent a security risk in that it (seemingly) offers all and sundry an unlimited numb...
I'm wondering how frequently organisations use SOCKS5 as their web proxy protocol over, say, HTTP or authenticated HTTP proxies. Should an application even bother supporting SOCKS5 as an HTTP proxy? What percentage of organisations use SOCKS as a HTTP proxy? If you work in an organisation where you use SOCKS5, particularly authenticat...
I've heard some opinions that the SOAP/HTTP web service call stack is "thick" or "heavyweight," but I can't really pinpoint why. Would it be considered thick because of the serialization/deserialization of the SOAP envelope and the message? Is that really a heavy-weight operation? Or is it just considered "thick" compared to a raw/bin...
I got a quick question about sprites in css: Will I send two HTTP Request if I include the same image twice in a css file? For example if I want to load two different buttons from the same icon set image: .btn-1 { background:url('img/icons.png') 0 0; } .btn-2 { background:url('img/icons.png') 0 -60px; } or is there another wa...
I have a try catch block to handle an error I am getting with my application. I would like a simple way of setting the response to status code 403 or forbidden and then either redirect the user to the login page or to a custom error page. I am having some issue with once setting the status code and the redirect. Anyone have an examp...
I'd like to make an http request to a remote server while properly handling cookies (eg. storing cookies sent by the server, and sending those cookies when I make subsequent requests). It'd be nice to preserve any and all cookies, but really the only one I care about is the session cookie. With java.net, it appears that the preferred w...
For my web application (PHP/MYSQL), I show a list of items and a link on each row to delete the item. Right now, the link is <a href='item.php?id=3&action=delete'>Delete Item</a> If I wanted to use POST instead... how would I do it (this is a dynamically generated list)? Can I send POST data without the use of a form? Or, for every...
Is it possible? I'm looking around the Selenium docs and don't see any straightforward way to do it. All help appreciated! ...
I'm working on legacy code and need to make a patch. The problem: an ancient application sends bad HTTP POST requests. One of the parameters is not URL encoded. I know that this parameter always comes last and I know it's name. I'm now trying to fix it on the server side which is running inside tomcat. This parameter is not accessible ...
Hi Folks, I'm new to Rails and working on a project where after the user logs in they can click on a link to download an exe file ( say for example the file is at http://test.com/test.exe). I want to keep the link to the exe file hidden. What are the best ways to implement this step. I was thinking about using the redirect to url but I...
I'm trying to understand how CSS sprites improve performance on a site? Why is the downloading of several small images slower than the download of a single image holding the smaller images if the total size of the single image is the sum of the smaller images? ...
Hello all, I have setup up 2 virtual hosts that share the same IP on a centos server running apache 2. #<VirtualHost *:80> # ServerAdmin [email protected] # DocumentRoot /www/docs/dummy-host.example.com # ServerName dummy-host.example.com # ErrorLog logs/dummy-host.example.com-error_log # CustomLog logs/du...
Is there an accepted maximum allowed size for HTTP headers? If so, what is it? If not, is this something that's server specific or is the accepted standard to allow headers of any size? ...
I have a WCF service (basicHttpBinding) hosted in II7 on Vista that I expect to handle many requests concurrently. I'm attempting to load test the service by spawing 200 threads in a test app and calling the WCF service. I've run this test app on the same machine as the server as well as multiple other computers and I always get the sa...
When you publish a Subversion repository trough Apache Httpd you got an bonus feature: you can browse the HEAD revision of you sources with any HTTP client. For example, we have this repository: http://trash-cli.googlecode.com/svn/trunk/ With any HTTP client (e.g. Firefox) you can browse the files at the HEAD revision. The svnbook ex...
Is there a way include or suggest a read only flag as part of a content-disposition: attachment; filename=document.doc or other http header? ...
Is there a way to get Ie7 to expand on the error message “This program cannot display the webpage”? I have turned off friendly error messages but this has not helped. The background is that intermittently I get the error while using IE7 navigating to a around a particular a website. However I know the server has returned the web page ...
Using the WebClient class I can get the title of a website easily enough: WebClient x = new WebClient(); string source = x.DownloadString(s); string title = Regex.Match(source, @"\<title\b[^>]*\>\s*(?<Title>[\s\S]*?)\</title\>", RegexOptions.IgnoreCase).Groups["Title"].Value; I want to store the URL and the page title. Ho...
I am confused about authentication with BlazeDS. Most of the few examples I have found for authentication and authorization in BlazeDS and consequently Java Servlets in general make use of HTTP basic and digest authentication and realms for authorization. These examples are very simplistic and involve XML files with the user credentials ...
I am writing views, not so keen to write templates right away. But I need to test my program by submitting post requests. How do i simulate HTTP Post from within a django view I am aware that urllib2 and httplib modules of python allow a lot of options, but I am looking for something that elegantly integrates into the django views. ...