Update README with security and bugs sectionsHEAD master

Update the readme file to add a section on security (or lack of!) and known bugs. Signed-off-by: Russell King <rmk@armlinux.org.uk>
author: Russell King <rmk@armlinux.org.uk> 2021-09-26 13:23:24 +0100
committer: Russell King <rmk@armlinux.org.uk> 2021-09-26 13:23:40 +0100
commit: b0de5e760e770e055e2eaeacbbe1a8b3afb5b123 (patch)
tree: 07658120971433fad92f3f06150c454e2e47b094 /README
parent: fc720a141bfcbe915cded0d78a5fd5aac358b6e1 (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/README b/README
index 57d9ac6..6da0cfe 100644
--- a/README
+++ b/README
@@ -19,3 +19,16 @@ internet          proxy         httpd server      application
 The reverse proxy is responsible for controlling public access to the
 event streams served by the mini-httpd event server; the event server
 itself should not be publically accessible.
+
+Security
+--------
+Virtually none inherent to the server; if you can connect to the server
+you can read and write the vent stream. However, the server does detect
+a connection forwarded through Apache (via the X-Forwarded* headers)
+and denies the UPDATE command.
+
+Bugs
+----
+Does not treat request header fields case-insensitively
+Does not honour the Expect: 100-continue header
+Probably many more.
author	Russell King <rmk@armlinux.org.uk>	2021-09-26 13:23:24 +0100
committer	Russell King <rmk@armlinux.org.uk>	2021-09-26 13:23:40 +0100
commit	b0de5e760e770e055e2eaeacbbe1a8b3afb5b123 (patch)
tree	07658120971433fad92f3f06150c454e2e47b094 /README
parent	fc720a141bfcbe915cded0d78a5fd5aac358b6e1 (diff)