Remote spoofing arbitrary request headers A variation allows request splitting against servers with keep-alive enabled. Macrodobe involved again ]]>