Ben Kennedy writes:
Sam Varshavchik wrote at 6:31 PM (-0400) on 4/12/06:Try to set a cookie for www.cnn.com, and see how far you get.Browsers will reject cookies that a domain will try to set for a different domain.But in this case, you are setting a cookie for your own domain. The old saying goes: you break it, you get to pick up the pieces.Sure, that's true. But my point was that a user-agent could be sending anything at the web server and therefore it's the app's responsibility to fail elegantly.
Which it did.
I suppose the implicit response is that the CGI
paramater overflow message is elegant enough.
Right. It didn't crash, and reformat your hard drive.
pgpB7A7PxAade.pgp
Description: PGP signature
