[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] Overly permissive hostname matching

From: Daniel Stenberg
Subject: Re: [Bug-wget] Overly permissive hostname matching
Date: Tue, 18 Mar 2014 16:10:06 +0100 (CET)
User-agent: Alpine 2.00 (DEB 1167 2008-08-23)

On Tue, 18 Mar 2014, Darshit Shah wrote:

I'll try and set up a test case as soon as I can using the materials provided by you. It would be even more helpful if someone could pitch in with more help since: 1. This is not my domain and I don't understand it much. 2. I'm keeping really busy with my real life work and GSoC right now.

While in this area, you may want to fix a few other problems with the wget pattern match function that I believe exist as well:

 1 - it allows wildcard matches IP-addresses against the CN field ("*.168.0.1")

 2 - it allows multiple '*' in the pattern

 3 - it allows the '*' to be elsewhere than first in the a wildcard

See rfc6125 section 6.4.3 and 7.2 for helpful hints on the two latter details.


 / daniel.haxx.se

reply via email to

[Prev in Thread] Current Thread [Next in Thread]