Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Is content-encoding being set to UTF-8 invalid?

Tags:

java

http

apache

Hi I have a client that is trying to POST to us with the following http headers:

content-type: application/x-www-form-urlencoded
content-encoding: UTF-8

But our web application firewall keeps picking them up and throwing error:

Message: [file "/etc/httpd/modsecurity.d/10_asl_rules.conf"] [line "45"] [id "340362"] [msg "Atomicorp.com WAF Rules: ModSecurity does not support content encodings and can not detect attacks using it, therefore it must be blocked."] [severity "WARNING"] Access denied with code 501 (phase 2). Match of "rx ^Identity$" against "REQUEST_HEADERS:Content-Encoding" required. Action: Intercepted (phase 2)

Anyone would like to shed some light into this matter?

like image 633
Jae Lee Avatar asked Jun 17 '13 19:06

Jae Lee

People also ask

What is an invalid UTF-8 character?

This error is created when the uploaded file is not in a UTF-8 format. UTF-8 is the dominant character encoding format on the World Wide Web. This error occurs because the software you are using saves the file in a different type of encoding, such as ISO-8859, instead of UTF-8.

Is UTF-8 valid?

Valid UTF8 has a specific binary format. If it's a single byte UTF8 character, then it is always of form '0xxxxxxx', where 'x' is any binary digit. If it's a two byte UTF8 character, then it's always of form '110xxxxx10xxxxxx'.

How do I change my encoding to UTF-8?

UTF-8 Encoding in Notepad (Windows) Click File in the top-left corner of your screen. In the dialog which appears, select the following options: In the "Save as type" drop-down, select All Files. In the "Encoding" drop-down, select UTF-8.

What does UTF-8 encoding means?

UTF-8 (UCS Transformation Format 8) is the World Wide Web's most common character encoding. Each character is represented by one to four bytes. UTF-8 is backward-compatible with ASCII and can represent any standard Unicode character.

1 Answers

It is invalid. The content-encoding specifies the data transfer encoding used by the issuer of the content. UTF-8 is not a content encoding, it is a character set. Specifying the character set is done in the content-type header:

content-type: text/plain; charset=utf-8

Valid content-encoding values are, for instance, gzip, deflate. An HTTP client should specify what content encoding it supports with the accept-encoding header; the HTTP server will reply with a content-encoding header.

like image 101
fge Avatar answered Sep 29 '22 15:09

fge
Sign in to Comment

Related questions

Hadoop gzip compressed files
Java Primitive Types: int vs. Integer
Shrink JScroll Pane to same Height as JTable
ResultSet vs RowSet: Which one to choose and when?
In what ways are subtypes different from subclasses in usage?
How to stop proguard from obfuscating entire package?
How to make a rounded corner image in Java
Receiving SSLHandshakeException: handshake_failure despite my client ignoring all certs
Weird Java behavior: How come adding doubles with EXACTLY two decimal places result to a double with MORE THAN two decimal places?
Using 10.8 Notification Center in Java
Handling several implementations of one Spring bean/interface
Add remote via JGit
Hibernate restriction in causes an error if the list is empty
Android, how to blur/glass/frost current activity
Java - Can objects which are executing methods be garbage-collected?
An internal error occurred during: "Updating indexes".Java heap space during eclipse start up?
What causes HttpHostConnectException?
logging with AOP in spring?
convert Object[] from a hashmap keyset to String[]?
Change color of non-transparent parts of png in Java

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!