[cabf_validation] Method 6 - Agreed-Upon Change to Website

Doug Beattie doug.beattie at globalsign.com
Mon May 14 07:42:19 MST 2018

Does anyone have suggestions for how we should try to fix vulnerabilities with use of http host headers?  Is this not something we can address, or are there solid ways to mitigate the risk associated with shared IP addresses?


There are also open questions about Query strings, Cross protocol attacks and caching.  Can someone describe these and propose mitigations?


-------------- next part --------------
A non-text attachment was scrubbed...
Name: winmail.dat
Type: application/ms-tnef
Size: 13278 bytes
Desc: not available
URL: <http://cabforum.org/pipermail/validation/attachments/20180514/509b05e6/attachment.bin>

More information about the Validation mailing list