Answer the question
In order to leave comments, you need to log in
O
O
orange472020-11-16 20:31:58
orange47, 2020-11-16 20:31:58
I came across a subdomain that gives 403 forbidden but opens at the same time. How is this implemented?
I came across a subdomain that gives 403 forbidden but opens at the same time. How is this implemented?
When checking a subdomain, 4web gives out 403. At the same time, the subdomain itself opens - in the search for the main domain. Interested for educational purposes.
3 answer(s)
@New_Horizons
@voleg4u
@gedev
If we request a page via curl , then we will get the response body :
If you request headers, then 403, as indicated in the script:
I
Ilya, 2020-11-16 @New_Horizons
Why not? technically possible. We send the status code 403, in the body we return the site.
O
Oleg Volkov, 2020-11-16 @voleg4u
CGI script itself generates all headers. You can write 403 in the headers, and give the contents in the body.
Option No 2: remap the 403 error page to index.html
G
ge, 2020-11-17 @gedev
I will illustrate the answers above with an example in Python (run via CGI).
Here is such a script. Everything before the empty print() is HTTP headers:
#!/usr/bin/env python3
print("Status: 403 Forbidden")
print("Content-type: text/html")
print()
print("<h1>Hello world!</h1>")If we request a page via curl , then we will get the response body :
$ curl http://example.ru/cgi-bin/scr.py
<h1>Hello world!</h1>If you request headers, then 403, as indicated in the script:
$ curl -I http://example.ru/cgi-bin/scr.py
HTTP/1.1 403 Forbidden
Server: nginx/1.16.1
Date: Tue, 17 Nov 2020 12:01:18 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Vary: Accept-Encoding
Similar questions
U
A
J
A
C
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question