• Douwe Maan's avatar
    Protect Gitlab::HTTP against DNS rebinding attack · 1de0a033
    Douwe Maan authored
    Gitlab::HTTP now resolves the hostname only once, verifies the IP is not
    blocked, and then uses the same IP to perform the actual request, while
    passing the original hostname in the `Host` header and SSL SNI field.
    1de0a033
url_blocker_spec.rb 14.2 KB