mirror/curl
2
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2025-04-18 16:30:45 +08:00
Code Issues Packages Projects Releases Wiki Activity

CURLOPT_AUTOREFERER.3: highlight the privacy leak risk

Browse Source 
Closes #9757
This commit is contained in:
Daniel Stenberg 2022-10-18 08:40:24 +02:00
parent dae84805de
commit 40f3504401
No known key found for this signature in database
GPG Key ID: 5CC908FDB71E12C2
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
docs/libcurl/opts/CURLOPT_AUTOREFERER.3
View File

@ -32,9 +32,13 @@ CURLOPT_AUTOREFERER \- automatically update the referer header
CURLcode curl_easy_setopt(CURL *handle, CURLOPT_AUTOREFERER, long autorefer);
.fi
.SH DESCRIPTION
Pass a parameter set to 1 to enable this. When enabled, libcurl will
Pass a long parameter set to 1 to enable this. When enabled, libcurl will
automatically set the Referer: header field in HTTP requests to the full URL
where it follows a Location: redirect.
The automatic referer is set to the full previous URL even when redirects are
done cross-origin or following redirects to insecure protocols. This is
considered a minor privacy leak by some.
.SH DEFAULT
0, disabled
.SH PROTOCOLS