HTTP: The Definitive Guide

Larger Cover

By David Gourley, Brian Totty, Marjorie Sayer, Anshu Aggarwal, Sailu Reddy

Publisher: O'Reilly Media

Released: September 2002

Pages: 656

Behind every web transaction lies the Hypertext Transfer Protocol (HTTP) --- the language of web browsers and servers, of portals and search engines, of e-commerce and web services. Understanding HTTP is essential for practically all web-based programming, design, analysis, and administration.

While the basics of HTTP are elegantly simple, the protocol's advanced features are notoriously confusing, because they knit together complex technologies and terminology from many disciplines. This book clearly explains HTTP and these interrelated core technologies, in twenty-one logically organized chapters, backed up by hundreds of detailed illustrations and examples, and convenient reference appendices. HTTP: The Definitive Guide explains everything people need to use HTTP efficiently -- including the "black arts" and "tricks of the trade" -- in a concise and readable manner.

In addition to explaining the basic HTTP features, syntax and guidelines, this book clarifies related, but often misunderstood topics, such as: TCP connection management, web proxy and cache architectures, web robots and robots.txt files, Basic and Digest authentication, secure HTTP transactions, entity body processing, internationalized content, and traffic redirection.

Many technical professionals will benefit from this book. Internet architects and developers who need to design and develop software, IT professionals who need to understand Internet architectural components and interactions, multimedia designers who need to publish and host multimedia, performance engineers who need to optimize web performance, technical marketing professionals who need a clear picture of core web architectures and protocols, as well as untold numbers of students and hobbyists will all benefit from the knowledge packed in this volume.

There are many books that explain how to use the Web, but this is the one that explains how the Web works. Written by experts with years of design and implementation experience, this book is the definitive technical bible that describes the "why" and the "how" of HTTP and web core technologies. HTTP: The Definitive Guide is an essential reference that no technically-inclined member of the Internet community should be without.

HTTP: The Web's Foundation
1. Chapter 1 Overview of HTTP
  1. HTTP: The Internet's Multimedia Courier
  2. Web Clients and Servers
  3. Resources
  4. Transactions
  5. Messages
  6. Connections
  7. Protocol Versions
  8. Architectural Components of the Web
  9. The End of the Beginning
  10. For More Information
2. Chapter 2 URLs and Resources
  1. Navigating the Internet's Resources
  2. URL Syntax
  3. URL Shortcuts
  4. Shady Characters
  5. A Sea of Schemes
  6. The Future
  7. For More Information
3. Chapter 3 HTTP Messages
  1. The Flow of Messages
  2. The Parts of a Message
  3. Methods
  4. Status Codes
  5. Headers
  6. For More Information
4. Chapter 4 Connection Management
  1. TCP Connections
  2. TCP Performance Considerations
  3. HTTP Connection Handling
  4. Parallel Connections
  5. Persistent Connections
  6. Pipelined Connections
  7. The Mysteries of Connection Close
  8. For More Information
HTTP Architecture
1. Chapter 5 Web Servers
  1. Web Servers Come in All Shapes and Sizes
  2. A Minimal Perl Web Server
  3. What Real Web Servers Do
  4. Step 1: Accepting Client Connections
  5. Step 2: Receiving Request Messages
  6. Step 3: Processing Requests
  7. Step 4: Mapping and Accessing Resources
  8. Step 5: Building Responses
  9. Step 6: Sending Responses
  10. Step 7: Logging
  11. For More Information
2. Chapter 6 Proxies
  1. Web Intermediaries
  2. Why Use Proxies?
  3. Where Do Proxies Go?
  4. Client Proxy Settings
  5. Tricky Things About Proxy Requests
  6. Tracing Messages
  7. Proxy Authentication
  8. Proxy Interoperation
  9. For More Information
3. Chapter 7 Caching
  1. Redundant Data Transfers
  2. Bandwidth Bottlenecks
  3. Flash Crowds
  4. Distance Delays
  5. Hits and Misses
  6. Cache Topologies
  7. Cache Processing Steps
  8. Keeping Copies Fresh
  9. Controlling Cachability
  10. Setting Cache Controls
  11. Detailed Algorithms
  12. Caches and Advertising
  13. For More Information
4. Chapter 8 Integration Points: Gateways, Tunnels, and Relays
  1. Gateways
  2. Protocol Gateways
  3. Resource Gateways
  4. Application Interfaces and Web Services
  5. Tunnels
  6. Relays
  7. For More Information
5. Chapter 9 Web Robots
  1. Crawlers and Crawling
  2. Robotic HTTP
  3. Misbehaving Robots
  4. Excluding Robots
  5. Robot Etiquette
  6. Search Engines
  7. For More Information
6. Chapter 10 HTTP-NG
  1. HTTP's Growing Pains
  2. HTTP-NG Activity
  3. Modularize and Enhance
  4. Distributed Objects
  5. Layer 1: Messaging
  6. Layer 2: Remote Invocation
  7. Layer 3: Web Application
  8. WebMUX
  9. Binary Wire Protocol
  10. Current Status
  11. For More Information
Identification, Authorization, and Security
1. Chapter 11 Client Identification and Cookies
  1. The Personal Touch
  2. HTTP Headers
  3. Client IP Address
  4. User Login
  5. Fat URLs
  6. Cookies
  7. For More Information
2. Chapter 12 Basic Authentication
  1. Authentication
  2. Basic Authentication
  3. The Security Flaws of Basic Authentication
  4. For More Information
3. Chapter 13 Digest Authentication
  1. The Improvements of Digest Authentication
  2. Digest Calculations
  3. Quality of Protection Enhancements
  4. Practical Considerations
  5. Security Considerations
  6. For More Information
4. Chapter 14 Secure HTTP
  1. Making HTTP Safe
  2. Digital Cryptography
  3. Symmetric-Key Cryptography
  4. Public-Key Cryptography
  5. Digital Signatures
  6. Digital Certificates
  7. HTTPS: The Details
  8. A Real HTTPS Client
  9. Tunneling Secure Traffic Through Proxies
  10. For More Information
Entities, Encodings, and Internationalization
1. Chapter 15 Entities and Encodings
  1. Messages Are Crates, Entities Are Cargo
  2. Content-Length: The Entity's Size
  3. Entity Digests
  4. Media Type and Charset
  5. Content Encoding
  6. Transfer Encoding and Chunked Encoding
  7. Time-Varying Instances
  8. Validators and Freshness
  9. Range Requests
  10. Delta Encoding
  11. For More Information
2. Chapter 16 Internationalization
  1. HTTP Support for International Content
  2. Character Sets and HTTP
  3. Multilingual Character Encoding Primer
  4. Language Tags and HTTP
  5. Internationalized URIs
  6. Other Considerations
  7. For More Information
3. Chapter 17 Content Negotiation and Transcoding
  1. Content-Negotiation Techniques
  2. Client-Driven Negotiation
  3. Server-Driven Negotiation
  4. Transparent Negotiation
  5. Transcoding
  6. Next Steps
  7. For More Information
Content Publishing and Distribution
1. Chapter 18 Web Hosting
  1. Hosting Services
  2. Virtual Hosting
  3. Making Web Sites Reliable
  4. Making Web Sites Fast
  5. For More Information
2. Chapter 19 Publishing Systems
  1. FrontPage Server Extensions for Publishing Support
  2. WebDAV and Collaborative Authoring
  3. For More Information
3. Chapter 20 Redirection and Load Balancing
  1. Why Redirect?
  2. Where to Redirect
  3. Overview of Redirection Protocols
  4. General Redirection Methods
  5. Proxy Redirection Methods
  6. Cache Redirection Methods
  7. Internet Cache Protocol
  8. Cache Array Routing Protocol
  9. Hyper Text Caching Protocol
  10. For More Information
4. Chapter 21 Logging and Usage Tracking
  1. What to Log?
  2. Log Formats
  3. Hit Metering
  4. A Word on Privacy
  5. For More Information
Appendixes
1. Appendix A URI Schemes
2. Appendix B HTTP Status Codes
  1. Status Code Classifications
  2. Status Codes
3. Appendix C HTTP Header Reference
4. Appendix D MIME Types
  1. Background
  2. MIME Type Structure
  3. MIME Type IANA Registration
  4. MIME Type Tables
5. Appendix E Base-64 Encoding
  1. Base-64 Encoding Makes Binary Data Safe
  2. Eight Bits to Six Bits
  3. Base-64 Padding
  4. Perl Implementation
  5. For More Information
6. Appendix F Digest Authentication
  1. Digest WWW-Authenticate Directives
  2. Digest Authorization Directives
  3. Digest Authentication-Info Directives
  4. Reference Code
7. Appendix G Language Tags
  1. First Subtag Rules
  2. Second Subtag Rules
  3. IANA-Registered Language Tags
  4. ISO 639 Language Codes
  5. ISO 3166 Country Codes
  6. Language Administrative Organizations
8. Appendix H MIME Charset Registry
  1. MIME Charset Registry
  2. Preferred MIME Names
  3. Registered Charsets

Colophon

Title:

HTTP: The Definitive Guide

By:

David Gourley, Brian Totty, Marjorie Sayer, Anshu Aggarwal, Sailu Reddy

Publisher:

O'Reilly Media

Formats:

Print
Ebook
Safari Books Online

Print:

September 2002

Ebook:

June 2009

Pages:

656

Print ISBN:

978-1-56592-509-0

| ISBN 10:

1-56592-509-2

Ebook ISBN:

978-0-596-10331-6

| ISBN 10:

0-596-10331-X

David Gourley

is the Chief Technology Officer of Endeca, where he leads the research and development of Endeca's knowledge navigation products. Prior to working at Endeca, David designed and developed core components of Inktomi's Internet-scale search database and was a senior developer of Inktomi's web caching products. David earned a B.A.in Computer Science from the University of California at Berkeley.

View David Gourley's full profile page.
Brian Totty

was a member of Inktomi Corporation's founding engineering team, and served as Inktomi's Vice President of R&D where he co-developed Inktomi's search engine database, and led the development of Inktomi's web caching and streaming media technologies. Formerly, he was a scientist at Silicon Graphics and at Apple Computer's Advanced Technology Group. Brian Totty has received several awards for research and teaching excellence, and holds a Ph.D. in Computer Science from the University of Illinois, Urbana-Champaign, and a B.S. in Computer Science from M.I.T.

View Brian Totty's full profile page.

Colophon

Our look is the result of reader comments, our own experimentation, and feedback from distribution channels. Distinctive covers complement our distinctive approach to technical topics, breathing personality and life into potentially dry subjects. The animal on the cover of HTTP: The Definitive Guide is a thirteen-lined ground squirrel (Spermophilus tridecemlineatus), common to central North America. True to its name, the thirteen-lined ground squirrel has thirteen stripes with rows of light spots that run the length of its back. Its color pattern blends into its surroundings, protecting it from predators. Thirteen-lined ground squirrels are members of the squirrel family, which includes chipmunks, ground squirrels, tree squirrels, prairie dogs, and woodchucks. They are similar in size to the eastern chipmunk but smaller than the common gray squirrel, averaging about 11 inches in length (including a 5-6 inch tail).

Thirteen-lined ground squirrels go into hibernation in October and emerge in late March or early April. Each female usually produces one litter of 7-10 young each May. The young leave the burrows at four to five weeks of age and are fully grown at six weeks. Ground squirrels prefer open areas with short grass and well-drained sandy or loamy soils for burrows, and they avoid wooded areas--mowed lawns, golf courses, and parks are common habitats.

Ground squirrels can cause problems when they create burrows, dig up newly planted seeds, and damage vegetable gardens. However, they are important prey to several predators, including badgers, coyotes, hawks, weasels, and various snakes, and they benefit humans directly by feeding on many harmful weeds, weed seeds, and insects. Rachel Wheeler was the production editor and copyeditor for HTTP: The Definitive Guide. Leanne Soylemez, Sarah Sherman, and Mary Anne Weeks Mayo provided quality control, and DerekDi Matteo and Brian Sawyer provided production assistance. John Bickelhaupt wrote the index.

Ellie Volckhausen designed the cover of this book, based on a series design by Edie Freedman. The cover image is an original illustration created by Lorrie LeJeune. Emma Colby produced the cover layout with QuarkXPress 4.1 using Adobe's ITC Garamond font.

David Futato and Melanie Wang designed the interior layout, based on a seriesdesign by David Futato. Joe Wizda prepared the files for production in FrameMaker 5.5.6. The text font is Linotype Birka; the heading font is Adobe Myriad Condensed; and the code font is LucasFont's TheSans Mono Condensed. The illustrations that appear in the bookwere produced by Robert Romano and Jessamyn Read using Macromedia FreeHand 9 and Adobe Photoshop 6. This colophon was written by Rachel Wheeler.

Description

Table of Contents

Product Details

About the Author

Colophon

Recommended for You

Recently Viewed

Primer: Moldmaking

By Adam Savage

September 2009

Ebook: $0.99

DCE Security Programming

By Wei Hu

July 1995

Degunking Windows

Clean up and speed up your sluggish PC

By Joli Ballew, Jeff Duntemann

January 2004

Customer Reviews

REVIEW SNAPSHOT®

by PowerReviews

oreilly HTTP: The Definitive Guide

4.8

(based on 6 reviews)

Reviews

Reviewed by 6 customers

Sort by

Displaying reviews 1-6

8/25/2010

5.0

More than you'd expect

By active developer

from Romania

About Me Developer

Pros

Accurate
Concise
Easy to understand
Helpful examples
Well-written

Cons

Best Uses

Expert
Intermediate
Novice
Student

Comments about oreilly HTTP: The Definitive Guide:

I have essentially bought the book for the human readable aspect of the HTTP protocol RFC, but for my surprise I got much more from it (partially due the fact that I didn't read the TOC before).

Aside from all the pros I tagged, another interesting chapter of the book is the one about web crawlers and tips, tricks and pitfalls you may encounter/use in order to build good web crawlers.

And what else can I say about its Appendixes, where I found the best written reference to HTTP statuses and headers.

Five stars well deserved.

6/12/2009

(2 of 2 customers found this review helpful)

5.0

Excellent: Easily the best reference on HTTP

By jdruin

from Undisclosed

Comments about oreilly HTTP: The Definitive Guide:

This book remains at the top of references on the subject of HTTP. The book was top-notch when released and has been aided by the fact that HTTP has not changed in any fundamental way for years.

What sets this volume apart is the style. In essence, the book is really covering what is freely available in various RFCs covering HTTP, but the book explains the RFCs using 2 techniques that makes it easy to understand.

First the HTTP specifications are put in context. The book covers how the HTTP spec is used in conjunction with TCP/IP, the Internet, web servers, proxies, SSL, and networks.

Second, the book explains the details progressively from the basics to difficult topics. This allows readers new to HTTP to learn how it works but there is still values to readers who are more advanced.

There is no part of HTTP that is not covered. Most is covered in detail.

This is a must-have for web developers.

10/30/2006

5.0

HTTP: The Definitive Guide Review

By Anonymous

from Undisclosed

Comments about oreilly HTTP: The Definitive Guide:

If Sid likes it, 'nuf said. I'm buying it!

8/26/2003

4.0

HTTP: The Definitive Guide Review

By Alex Belt of the Columbia Java Users Group

from Undisclosed

Comments about oreilly HTTP: The Definitive Guide:

As its name states, this book is a definitive guide. It provides in depth coverage of all important HTTP information in use today, ranging from the basic communications protocol, to cache control, proxies, and security mechanisms. It's extremely well written in clear and easy to understand terms.

The organization of the book is one reason I gave it only 4 tarsiers instead of 5. Material on proxies, and especially cache control, was spread through the book, rather than being located in any one area. While the basics of these are important to understanding some of the considerations in writing an HTTP application, a different organizational structure may have suited the material better.

This book is a great teaching and reference book for learning HTTP, but if you are not planning on running your own HTTP server, especially a proxy or caching server, a lot of this book is overkill. I'm sure I'll be referring to it in the future for various other kinds of HTTP information.

3/12/2003

(3 of 3 customers found this review helpful)

5.0

HTTP: The Definitive Guide Review

By Sid Sidner

from Undisclosed

Comments about oreilly HTTP: The Definitive Guide:

I've fooled around with HTTP for years, but never really quite became an expert. I've read much of the RFC, an excellent spec, but serious as cancer - it helps if you know 95% of what you're reading and are just going for the 95%.

Well, this book is where you get that first 95% and is just fantastic. I really don't need to be an HTTP expert anymore, but I can't put it down. It's like The Secrets Of The Universe revealed. HTTP means many things to many people and next to TCP/IP is probably one of the most implemented protocols on the Internet. I now understand about historical versions of browsers, servers, and protocols. I now understand proxies, and smart routers, and authentication systems and reverse proxies.

This book is super-readable, with clear, NON-TRIVIAL examples, and tips. The authors even put up a Web site and show you how to telnet to it, to watch what its Apache Web server responds with.

I wish I could write this well!

1/29/2003

(2 of 2 customers found this review helpful)

5.0

HTTP: The Definitive Guide Review

By George Woolley

from Undisclosed

Comments about oreilly HTTP: The Definitive Guide:

An excellent book.

If you want to learn more about HTTP, its core technologies,

and the context in which it exits, this book will likely serve you well.

I used it for that.

The book also helped me to learn more about bots.

The book provides both perspective and useful specifics.

See details.

Displaying reviews 1-6

Save a Tree - Go Digital what is this?

Ebook: $43.99

Formats: DAISY, ePub, Mobi, PDF

Print & Ebook: $60.49

Print: $54.99

Safari Books Online - Read now >

HTTP: The Web's Foundation

Chapter 1 Overview of HTTP

Chapter 2 URLs and Resources

Chapter 3 HTTP Messages

Chapter 4 Connection Management

HTTP Architecture

Chapter 5 Web Servers

Chapter 6 Proxies

Chapter 7 Caching

Chapter 8 Integration Points: Gateways, Tunnels, and Relays

Chapter 9 Web Robots

Chapter 10 HTTP-NG

Identification, Authorization, and Security

Chapter 11 Client Identification and Cookies

Chapter 12 Basic Authentication

Chapter 13 Digest Authentication

Chapter 14 Secure HTTP

Entities, Encodings, and Internationalization

Chapter 15 Entities and Encodings

Chapter 16 Internationalization

Chapter 17 Content Negotiation and Transcoding

Content Publishing and Distribution

Chapter 18 Web Hosting

Chapter 19 Publishing Systems

Chapter 20 Redirection and Load Balancing

Chapter 21 Logging and Usage Tracking

Appendixes

Appendix A URI Schemes

Appendix B HTTP Status Codes

Appendix C HTTP Header Reference

Appendix D MIME Types

Appendix E Base-64 Encoding

Appendix F Digest Authentication

Appendix G Language Tags

Appendix H MIME Charset Registry

Colophon

David Gourley

Brian Totty

About O'Reilly

Community

More O'Reilly Sites

Partner Sites

Shop O'Reilly