diff options
| author | Chris Buechler <cmb@pfsense.org> | 2010-07-06 11:25:25 -0400 |
|---|---|---|
| committer | Chris Buechler <cmb@pfsense.org> | 2010-07-06 11:25:25 -0400 |
| commit | 049da5931013c2fc9426ff239a035859d9b9b0fc (patch) | |
| tree | f62eea0738614e4fccdd65f818689c43c3f7fc64 | |
| parent | 061177ec634e641deb34dd388187c0ac96135119 (diff) | |
| download | pfsense-049da5931013c2fc9426ff239a035859d9b9b0fc.zip pfsense-049da5931013c2fc9426ff239a035859d9b9b0fc.tar.gz | |
Revert "DNS Rebinding support from 2.0"
This reverts commit 8bc95b43baf4bb2e77c7e88043a036945f6fcaa0.
| -rw-r--r-- | etc/inc/auth.inc | 8 |
1 files changed, 0 insertions, 8 deletions
diff --git a/etc/inc/auth.inc b/etc/inc/auth.inc index c00befa..4c02aad 100644 --- a/etc/inc/auth.inc +++ b/etc/inc/auth.inc @@ -33,14 +33,6 @@ require_once("globals.inc"); /* We only support file backed HTTP Basic auth right now */ $auth_method="htpasswd_backed_basic_auth"; -/* DNS ReBinding attack prevention. http://redmine.pfsense.org/issues/708 */ -if ($_SERVER['HTTP_HOST'] != $config['system']['hostname'] . "." . $config['system']['domain'] and - $_SERVER['HTTP_HOST'] != $_SERVER['SERVER_ADDR'] and - $_SERVER['HTTP_HOST'] != $config['system']['hostname']) { - echo "DNS Rebind attack detected, see http://en.wikipedia.org/wiki/DNS_rebinding"; - exit; -} - /* Authenticate user - exit if failed (we should have a callback for this maybe) */ if (!$auth_method()) exit; |
