Dot (.) Does Matter for Cross platform Application

Access Protected Resource

https://ip/secured/neverseen.txt
https://ip/./secured/neverseen.txt

Test with curl Tool

curl https://ip/./secured/neverseen.txt
daemon: ip/secured/neverseen.txt
curl https://ip/%2e/secured/neverseen.txt”
daemon: “ip/./secured/neverseen.txt”.

Test It Again!

Oops !!! Why ?

https://ip/secured%2e/neverseen.txt

Linux vs Windows

Finally!

--

--

--

Love podcasts or audiobooks? Learn on the go with our new app.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Allen Kuo (kwyshell)

Allen Kuo (kwyshell)

More from Medium

How to install and Secure Redis on Ubuntu 22.04

Simple Bash Script to execute multiple commands on different terminal tabs

Magic Link Login: Simple, Easy and Secure

Upload files with any Cloud Storage Service with just 10 lines of code