[wp-hackers] GETting wp-comments-post.php

Elliotte Harold elharo at metalab.unc.edu
Thu Feb 15 19:20:42 GMT 2007


Lately I've run into a problem where the WP comments script causes false 
positives when validating. This is the wp-comments-post.php script.

When you load it via GET you receive something like this:

Date: Thu, 15 Feb 2007 19:04:27 GMT
Server: Apache/2
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Last-Modified: Thu, 15 Feb 2007 19:04:27 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
content-style-type: text/css
Content-Length: 0
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

200 OK

I think this script should be returning an HTTP 405 Method Not Allowed 
error instead when accessed via GET.

Also, what's with that expires header? 1984? That seems to be the case 
on all the WP pages I've checked. WordPress 2.0.8 if that makes a 
difference to any of this.

-- 
Elliotte Rusty Harold  elharo at metalab.unc.edu
Java I/O 2nd Edition Just Published!
http://www.cafeaulait.org/books/javaio2/
http://www.amazon.com/exec/obidos/ISBN=0596527500/ref=nosim/cafeaulaitA/


More information about the wp-hackers mailing list