Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-09-17 09:22:54 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix typo in comment

Browse Source
This commit is contained in:
Dirk
2025-07-28 15:43:01 +02:00
parent f8d3df7747
commit 9166fc7174
1 changed files with 5 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
testssl.sh
View File

@ -2578,9 +2578,10 @@ connectivity_problem() {
sanitze_http_header() {
# sp,e sed implementations tested were sometime not fine with HTTP headers containing x0d x0a (CRLF) which is
# usuallly the case. Also we use tr here to remove any crtl chars which the server side offers --> possible
# security problem. Only allowed now is LF + CR. See #2337. awk, see above, doesn't seem to care -- not under MacOS.
# some sed implementations were sometime not fine with HTTP headers containing x0d x0a (CRLF: usual case)
# Also we use tr here to remove any crtl chars which the server side offers --> possible security problem.
# Only allowed now is LF + CR. See #2337. awk, see above, doesn't seem to care -- not under MacOS.
sed -e '/^$/q' -e '/^[^a-zA-Z_0-9]$/q' $1 | tr -d '\000-\011\013\014\016-\037' >$1.tmp
# Now to be more sure we delete from '<' or '{' maybe with a leading blank until the end (HTTP body)
sed -e '/^ *<.*$/d' -e '/^ *{.*$/d' $1.tmp >$1