What am I working on right now? Probably the Sprog project [sourceforge.net].
GnuPG key Fingerprint:
6CA8 2022 5006 70E9 2D66
AE3F 1AF1 A20A 4CC0 0851
So this week we launch a web site that uses SSL. Wierd problems ensue for people who are using IE 6.0 on Windows XP - a scarily common configuration.
An analysis of the symptoms seems to suggest that the browser is sending a POST with no content. Note, this is quite different from the form being submitted with no fields completed. In our case not even the field names were received although it was a post request and it did have a non-zero Content-length header.
Turns out it's a bug - introduced by a recent security patch.
It goes like this:
Do these people not do regression testing?
The thing that pisses me off the most, is that the browser is broken, but we have to implement a workaround on the server (disable KeepAlive) so it looks to all the world like we had a bug and we fixed it.