a9bcddee4c
Gitlab::HTTP now resolves the hostname only once, verifies the IP is not blocked, and then uses the same IP to perform the actual request, while passing the original hostname in the `Host` header and SSL SNI field.
5 lines
99 B
YAML
5 lines
99 B
YAML
---
|
|
title: Protect Gitlab::HTTP against DNS rebinding attack
|
|
merge_request:
|
|
author:
|
|
type: security
|