From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mail-it0-f46.google.com (mail-it0-f46.google.com [209.85.214.46]) by fantadrom.bsd.lv (OpenSMTPD) with ESMTP id 587748f0 for ; Sat, 18 Mar 2017 10:48:49 -0500 (EST) Received: by mail-it0-f46.google.com with SMTP id m27so57391526iti.1 for ; Sat, 18 Mar 2017 08:48:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cathet-us.20150623.gappssmtp.com; s=20150623; h=sender:from:to:cc:subject:in-reply-to:references:comments :mime-version:content-id:date:message-id; bh=EW9Sl5oe9oFxI63qM1a6gLNqh78cfOkJnyHOylsJwfg=; b=VJG1zovvw+K4VciwCYhZFf/Rhvge2pTlhdeStp5HP8Latoyoos1Tcslu4zysC0A5O7 BsMxfNU20uNFVvC3iUAA+zGnFWv7a8Pc1fEokAO7o5x7T5iHGaXo54BnVXWfKxtGnGNe O52Q4wjlIEif4shuHCFutw/FCzJ7llTzv2sPZ1L/4d88SaS0AvB2gpOsQRrjT+nEXzEc CCiJwgmL1/aqApXRKjzkrOALcP81OzDc/xw3Tz9C1pwKPfUbEIzN1LEOoR4vt8rUXut1 87ilf7EsmHzWpYB9lDvR0SxYTe6oUkksjmFSkJI6jGVfXCCxM7y6j1LDAknLaKah7vfJ vbJQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:sender:from:to:cc:subject:in-reply-to:references :comments:mime-version:content-id:date:message-id; bh=EW9Sl5oe9oFxI63qM1a6gLNqh78cfOkJnyHOylsJwfg=; b=egAZIBNbmQ2CLf7/GhvwmquyWviiI+nm+lZHIF3pptW9rjCK76d7SAPI/4ItWsJWU7 wO9Tl+dBjSHM9am1lZnMpjsXFR9KWCJKdnB5/o6zL+CpzNYbxQFvmL5DmiCsoYRqMMCQ rsHU/vHEnlg1t136IXG5esvx9Cyc/UFUijipK3ALiS+88i0k8pnLGM3uwHIqhloKYPG6 rDWLv1Tw5SNN+flDh/9BWOeSHCW5UjXTPrGUyNWz/l1ITfg+1vqOfEVqcWEJn43Vjg// Uv5IuV0angtVU45db1FETXhzTlZLFmYgA5CbSVPY7CHjIWWDhdq/iazg1hvAmU7e2sSs t72w== X-Gm-Message-State: AFeK/H04xtnw7zCAnalI7oYXbSSPVk83MEDhyf16qG86esT8FhpXTAm2lCq8/tycWU7j0Q== X-Received: by 10.36.112.212 with SMTP id f203mr3483836itc.107.1489852129144; Sat, 18 Mar 2017 08:48:49 -0700 (PDT) Received: from cathet.us. (67-0-67-185.albq.qwest.net. [67.0.67.185]) by smtp.gmail.com with ESMTPSA id u191sm2601213ita.15.2017.03.18.08.48.48 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Sat, 18 Mar 2017 08:48:48 -0700 (PDT) Sender: "Anthony J. Bentley" Received: from cathet.us (localhost [127.0.0.1]) by cathet.us. (OpenSMTPD) with ESMTP id 71a8dab5; Sat, 18 Mar 2017 09:48:47 -0600 (MDT) From: "Anthony J. Bentley" To: tech@mdocml.bsd.lv cc: Andreas =?utf-8?Q?V=C3=B6gele?= Subject: Re: check environment variable HTTPS in cgi.c In-reply-to: <20170318151716.GB52684@athene.usta.de> References: <20170318151716.GB52684@athene.usta.de> Comments: In-reply-to Ingo Schwarze message dated "Sat, 18 Mar 2017 16:17:16 +0100." X-Mailinglist: mdocml-tech Reply-To: tech@mdocml.bsd.lv MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <82831.1489852127.1@cathet.us> Date: Sat, 18 Mar 2017 09:48:47 -0600 Message-ID: <90445.1489852127@cathet.us> Hi Ingo, I have desired to run man.cgi on HTTPS also. In some cases it can even be necessary; imagine manuals being served from a subdomain whose parent uses HSTS's includeSubDomains directive, for example. Ingo Schwarze writes: > Rejected. Minimizing the use of environment variables is among > the chief design goals of man.cgi(8). It's bad enough that we > can't avoid relying on PATH_INFO and QUERY_STRING. A solution that would not require environment variables would be to use a relative URI for redirects, as allowed in HTTP/1.1: https://tools.ietf.org/html/rfc7231#section-7.1.2 Hm, public non-confidential RFCs accessible over HTTPS? What madness is this? ;) -- Anthony J. Bentley -- To unsubscribe send an email to tech+unsubscribe@mdocml.bsd.lv