View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0001465 | Main CAcert Website | my account | public | 2019-08-11 09:02 | 2019-08-23 17:02 |
| Reporter | . | Assigned To | Ted | ||
| Priority | normal | Severity | minor | Reproducibility | have not tried |
| Status | closed | Resolution | duplicate | ||
| Platform | Main CAcert Website | OS | N/A | OS Version | stable |
| Summary | 0001465: domain validation: filter out at least private network IP addresses before trying to validate domain/whatever. | ||||
| Description | The domain validation routine does no filtering before making an attempt to validate. At the very least the private range IP-addresses (192.168.?.?, 10.?.?.?, 172.?.?.? etcetera) should be filtered out and an error returned to the user before starting validation. There is no reason to bother IANA with attempts to validate what we do not even allow to be validated. Do we even want to issue certificates for ip-addresses? If not it should be even easier to filter these out anything that looks line an IPv4 or IPv6 address. | ||||
| Tags | domain | ||||
| Reviewed by | |||||
| Test Instructions | |||||
| duplicate of | 0001451 | new | mail addresses |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2019-08-11 09:02 | . | New Issue | |
| 2019-08-11 09:02 | . | Tag Attached: domain | |
| 2019-08-23 17:00 | Ted | Relationship added | duplicate of 0001451 |
| 2019-08-23 17:02 | Ted | Assigned To | => Ted |
| 2019-08-23 17:02 | Ted | Status | new => closed |
| 2019-08-23 17:02 | Ted | Resolution | open => duplicate |
| 2019-08-23 17:02 | Ted | Note Added: 0005824 |
