Use xpdev link_list_t instead of an independant implementation
Fix possible segfault handling long headers
Fix information leak - would give a 404 error rather than a 403 error when
  trying to access an ARS protected file and no authentication done.
Read headers during the initial request parsing to allow correct SSJS/CGI
  detection and to avoid needless copying of variables.
Probobly more stuff done too...