PHP Security / Form Processing / ...

nullTao | 净空无道 | Blog

PHP Security / Form Processing / Spoofed HTTP Requests Tue, Jun 5. 2007

Spoofed HTTP Requests

HTTP 请求欺骗

A more powerful, although less convenient approach is to spoof an HTTP request. In the example form just discussed, where the user chooses a color, the resulting HTTP request looks like the following (assuming a choice of red):

HTTP 请求欺骗非常的强大,而且还很方便。在上面讨论到的那个让用户选择颜色示例中, 结果生成的 HTTP 请求看起来是这个样子的(假设用户选择了红色):

  1. POST /process.php HTTP/1.1
  2. Host: example.org
  3. Content-Type: application/x-www-form-urlencoded
  4. Content-Length: 9
  5.  
  6. color=red

The telnet utility can be used to perform some ad hoc testing. The following example makes a simple GET request for http://www.php.net/:

telnet 工具能够用来执行这个用途的测试。 下面的例子执行了一个对 http://www.php.net/ 的简单的 GET 请求:

  1. $telnet www.php.net 80
  2. Trying 64.246.30.37...
  3. Connected to rs1.php.net.
  4. Escape character is '^]'.
  5. GET / HTTP/1.1
  6. Host: www.php.net
  8. HTTP/1.1 200 OK
  9. Date: Wed, 21 May 2004 12:34:56 GMT
  10. Server: Apache/1.3.26 (Unix) mod_gzip/1.3.26.1a
  11. PHP/4.3.3-dev
  12. X-Powered-By: PHP/4.3.3-dev
  13. Last-Modified: Wed, 21 May 2004 12:34:56 GMT
  14. Content-language: en
  15. Set-Cookie: COUNTRY=USA%2C12.34.56.78; expires=Wed,
  16. 28-May-04 12:34:56 GMT; path=/; domain=.php.net
  17. Connection: close
  18. Transfer-Encoding: chunked
  19. Content-Type: text/html;charset=ISO-8859-1
  20. 2083
  21.  
  22. <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01
  23. Transitional//EN">
  24. ...

Of course, you can write your own client instead of manually entering requests with telnet. The following example shows how to perform the same request using PHP:

当然了,你也可以写一个你自己的客户端来替代在 telnet 里手动的输入那些请求指令。 下面的例子给你展示了如何用 PHP 完成相同的请求:

  1. <?php
  2. $http_response = '';
  3. $fp = fsockopen('www.php.net', 80);
  4. fputs($fp, "GET / HTTP/1.1\r\n");
  5. fputs($fp, "Host: www.php.net\r\n\r\n");
  6. while (!feof($fp))
  7. {
  8.         $http_response .= fgets($fp, 128);
  9. }
  10. fclose($fp);
  11. echo nl2br(htmlentities($http_response));
  12. ?>

Sending your own HTTP requests gives you complete flexibility, and this demonstrates why server-side data filtering is so essential. Without it, you have no assurances about any data that originates from any foreign source.

发送你自己的 HTTP 请求可以给你最大的适应性。 这也证明了为什么服务器端的数据过滤这么的重要。 如果不进行服务器端数据过滤,所有的从外部过来的数据都是不保险的。

Posted by Wei Geng in TranslatioN Comments: (0) Trackbacks: (0)
Defined tags for this entry: , ,
Related entries by tags:
Read It Later 集成到 Google Reader
真实世界让你很沮丧吗?IBM 邀请你到超越时空的紫禁城一游。
地图聚合的数据格式前三名:KML、GeoRSS 和 GeoJSON
解决 propel-convert-xml-schema 把 null 默认值处理为字符串的问题
MySQL 中用 GKB 来让 UTF-8 字段中的中文按照拼音排序
< PHP Security / Form Processing / Spoofed Form Submissions | PHP Security / Form Processing / Cross-Site Scripting >

Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

No comments


Add Comment

You can use [geshi lang=lang_name [,ln={y|n}]][/lang] tags to embed source code snippets
Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA