W3C home > Mailing lists > Public > ietf-http-wg@w3.org > January to March 2010

RE: Security considerations for DNS rebinding

From: Blake Frantz <bfrantz@cisecurity.org>
Date: Tue, 9 Feb 2010 12:50:20 -0600
To: Adam Barth <w3c@adambarth.com>, Tim <tim-projects@sentinelchicken.org>
CC: Maciej Stachowiak <mjs@apple.com>, HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <4C374A2653EB5E43AF886CE70DFC567213CECB5CC9@34093-MBX-C03.mex07a.mlsrvr.com>
>
> On the other hand, Host header checking is effective, and it seems
> valuable for HTTPbis to recommend it to server implementors.
>
 
I agree.
Received on Tuesday, 9 February 2010 18:51:22 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:51:16 GMT