flightofthefox·hace 4 años·discussSolution seems funky. Attackers could just omit the Content-Length header