From fa087612240405ea54db61544e7e4ed3373f4d24 Mon Sep 17 00:00:00 2001 From: jim-p Date: Tue, 2 Jul 2013 16:54:25 -0400 Subject: Include RFC2136 hosts in DNS rebinding checks. --- etc/inc/auth.inc | 7 +++++++ 1 file changed, 7 insertions(+) (limited to 'etc/inc') diff --git a/etc/inc/auth.inc b/etc/inc/auth.inc index afddc5b..67451a2 100644 --- a/etc/inc/auth.inc +++ b/etc/inc/auth.inc @@ -86,6 +86,13 @@ if (function_exists("display_error_form") && !isset($config['system']['webgui'][ break; } + if(is_array($config['dnsupdates']['dnsupdate']) && !$found_host) + foreach($config['dnsupdates']['dnsupdate'] as $rfc2136) + if(strcasecmp($rfc2136['host'], $http_host) == 0) { + $found_host = true; + break; + } + if(!empty($config['system']['webgui']['althostnames']) && !$found_host) { $althosts = explode(" ", $config['system']['webgui']['althostnames']); foreach ($althosts as $ah) -- cgit v1.1