I was pleasantly surprised to see this new thread, although I hope the addition of the "Big Brother" in the title doesn't detract from serious discussion about this HTTP smuggling & splitting thing. For example, "Who is behind this and why?" Questions like those allow for answers rife with speculation and conjecture. Since nothing can be proven, no conclusions can be made, and the dialog just goes around and around. I believe I do not have enough knowledge about this smuggling/splitting to ask a thought-provoking question and the procedure involved appears quite complicated. I think I will start educating myself by reading this HTTP specification over a few cups of coffee.