What is "400 Bad Request" means?

Post new topic   This topic is locked: you cannot edit posts or make replies.    DD-WRT Forum Index -> Broadcom SoC based Hardware
Author Message
Dotan.g
DD-WRT Novice


Joined: 12 Oct 2009
Posts: 2

PostPosted: Mon Oct 12, 2009 21:24    Post subject: What is "400 Bad Request" means? Reply with quote
simply as that:

400 Bad Request Cross Site Action detected!

when I try to access my repeater (router) through the my modem/router.

what is that mean?

I have router set to repeater mode: whr-hp-g54 with DD-WRT installed. (I'm tring to access it's interface)
and my modem/router is a Westell A90-750015-07 model.

Thanks,
Dotan.
Sponsor
phuzi0n
DD-WRT Guru


Joined: 10 Oct 2006
Posts: 10141

PostPosted: Mon Oct 12, 2009 21:26    Post subject: Reply with quote
It just means you followed a link to the router's address instead of accessing it directly. Type in the router IP to access its config.
_________________
Read the forum announcements thoroughly! Be cautious if you're inexperienced.
Available for paid consulting. (Don't PM about complicated setups otherwise)
Looking for bricks and spare routers to expand my collection. (not interested in G spec models)
fuzzyeric
DD-WRT Novice


Joined: 20 Dec 2023
Posts: 5

PostPosted: Sat May 11, 2024 19:10    Post subject: Reply with quote
If you'd like to have a little web page you can use to list links to your routers, like I do, you need to modify the links a little to avoid this HTTP:400 reply.

Assuming your DNS resolves "router001" to the IP of your router, "1.1.1.1" in this example:

These cause the 400 error:
Quote:
<a href="router001">router 1</a>
and
Quote:
<a href="1.1.1.1">router 1</a>


These do not cause the 400 error:
Quote:
<a href="router001" rel=noreferrer>router 1</a>
and
Quote:
<a href="1.1.1.1" rel=noreferrer>router 1</a>


The noreferrer relationship instructs the browser to leak no referral information to the link target. (Referral information makes sense if the target would like to track from where visitors come. This can be monetized for affiliates of vendors referring to the vendor.) This makes it appear to the webserver on the router as if you directly typed the address into the URL bar. The router webserver is refusing referred links so that a malicious website can't give you malicious instructions for their "test thing" then link you to your own router so that when you apply those instructions, they pwn your stuff. To me this security step seems a little overmuch, but I can imagine a very tired person potentially making this sort of mistake...
kernel-panic69
DD-WRT Guru


Joined: 08 May 2018
Posts: 14857
Location: Texas, USA

PostPosted: Sat May 11, 2024 20:33    Post subject: Reply with quote
  1. Necro-bump of a thread from 2009.
  2. Cross-site issues have long since been fixed in DD-WRT.
  3. Topic locked.

_________________
"Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT
Pogo - A minimal level of ability is expected and needed...
DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)

----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Display posts from previous:    Page 1 of 1
Post new topic   This topic is locked: you cannot edit posts or make replies.    DD-WRT Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum