Welcome! Log In Create A New Profile

External service interaction DNS

Posted by ash_sap

ash_sap

External service interaction DNS
February 21, 2020 11:30AM

Registered: 4 years ago
Posts: 1

Running a site using Nginx, as part of vulnerability scanning, we are getting reports of a DNS proxy form of exploit.

Essentially, it is possible to inject DNS lookups as part of the uri, GET request payload or even in Refer section of the HTTP header.

From Nginix perspective, wanted to know, if there is a way to prevent Nginix to attempt to resolve any DNS requests provided as part of URI, HTTP Refer or even User Agent attribute?

Reply Quote

@boniw

Re: External service interaction DNS
October 19, 2020 08:15AM

Registered: 3 years ago
Posts: 1

anyone can resolved this problem?

Reply Quote

Newer Topic Older Topic

Print View RSS

Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 281

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018