Question 1

What is HTTP request smuggling?

Accepted Answer

HTTP request smuggling exploits discrepancies in how front-end and back-end servers parse HTTP requests, particularly Content-Length and Transfer-Encoding headers. By crafting ambiguous requests, attackers can smuggle a hidden request inside another, bypassing security controls, poisoning caches, or hijacking other users' requests.

Question 2

How do I prevent HTTP request smuggling?

Accepted Answer

Ensure all servers in the chain parse HTTP requests identically. Use HTTP/2 end-to-end where possible, normalize ambiguous requests at the front-end proxy, reject requests with both Content-Length and Transfer-Encoding headers, disable connection reuse between front-end and back-end servers, and keep all proxy and server software up to date.

HTTP Request Smuggling

Challenges

Frequently Asked Questions