It's sending the "wrong" one -- $ curl -I http://lcamtuf.coredump.cx/squirrel/ H... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

286c8cb04bda on Aug 11, 2016 | parent | context | favorite | on: This JPEG is also a webpage

It's sending the "wrong" one --

    $ curl -I http://lcamtuf.coredump.cx/squirrel/
    HTTP/1.1 200 OK
    Date: Thu, 11 Aug 2016 05:18:00 GMT
    Server: Apache
    Last-Modified: Mon, 19 Sep 2011 23:31:49 GMT
    Accept-Ranges: bytes
    Content-Length: 135938
    Content-Type: text/html

TazeTSchnitzel on Aug 13, 2016 [–]

Oh. Huh. My bad.

I guess browsers only forbid ignoring Content-Type for stuff like JS, then. For JPEG it's probably not a security concern.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact