Hacker News new | past | comments | ask | show | jobs | submit login

This only matters if your backend is going to set a header that contains a null byte. Since some people echo back user data in headers (ugh) this could cause an issue. Rails is more than happy to let you put NULLs in response headers, btw. Of course, all of the ASCII CTL characters (0..27) are forbidden by the spec: http://www.ietf.org/rfc/rfc2068.txt



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: