Page MenuHomePhabricator

Mostly defuse DNS rebinding attack for outbound requests
ClosedPublic

Authored by epriestley on Mar 26 2015, 2:05 PM.

Details

Summary

Ref T6755. I'll add some notes there about specifics.

Test Plan
  • Made connections to HTTP and HTTPS URIs.
  • Added some debugging code to verify that HTTP URIs were pre-resolved.

Diff Detail

Repository
rP Phabricator
Lint
Automatic diff as part of commit; lint not applicable.
Unit
Automatic diff as part of commit; unit tests not applicable.

Event Timeline

epriestley retitled this revision from to Mostly defuse DNS rebinding attack for outbound requests.
epriestley updated this object.
epriestley edited the test plan for this revision. (Show Details)
epriestley added a reviewer: btrahan.
btrahan edited edge metadata.
This revision is now accepted and ready to land.Mar 26 2015, 6:11 PM
This revision was automatically updated to reflect the committed changes.