Include 0.0.0.0/8 in DNS rebind checks

Follow
Avatar
mile-lile

Include 0.0.0.0/8 in DNS rebind checks. This range translates to hosts on the local network, or, at  least, 0.0.0.0 accesses the local host, so could be targets for DNS rebinding. See RFC 5735 section 3 for details.

0

Comments

2 comments

Sort by Date Votes
  • Avatar
    rotblitz

    This does not make sense.  This address space cannot be used for destination addressing.  It is just being used for "source hosts on 'this' network".  Therefore it cannot be used for DNS rebinding attacks.  Try it yourself!

    0
    Comment actions Permalink
  • Avatar
    jedisct1

    It's a Linux-specific thing. 0.0.0.0 goes to the local interface by default.

    0
    Comment actions Permalink

Please sign in to leave a comment.

Didn't find what you were looking for?

New post