Request parsing does not verify validity of Host header, in particular it can contain spaces.
This leads to weird possibilities like:
package main
import (
"bufio"
"bytes"
"os"
"net/http"
)
func main() {
data := []byte("GET http:/1.1 HTTP/1.1\nHost: host.com/somethingelse HTTP\n\n")
r, err := http.ReadRequest(bufio.NewReader(bytes.NewReader(data)))
if err != nil {
panic(err)
}
r.WriteProxy(os.Stdout)
}
GET http://host.com/somethingelse HTTP/1.1 HTTP/1.1
Host: host.com/somethingelse HTTP
User-Agent: Go 1.1 package http
which I guess can trick some other HTTP implementation.
go version devel +a1fe3b5 Sat Jun 13 04:33:26 2015 +0000 linux/amd64
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4