[cabf_validation] Method 6 - Agreed-Upon Change to Website
doug.beattie at globalsign.com
Mon May 14 07:42:19 MST 2018
Does anyone have suggestions for how we should try to fix vulnerabilities with use of http host headers? Is this not something we can address, or are there solid ways to mitigate the risk associated with shared IP addresses?
There are also open questions about Query strings, Cross protocol attacks and caching. Can someone describe these and propose mitigations?
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 13278 bytes
Desc: not available
More information about the Validation