This repository has been archived by the owner on Sep 10, 2024. It is now read-only.
Implement IP and DNS-based filtering in the HTTP client #1018
Labels
O-Uncommon
Affects or can be seen by some users regularly or most users rarely
S-Tolerable
Minor significance, cosmetic issues, low or no impact to users.
T-Enhancement
New feature of request
The HTTP client can be used to crawl some HTTP resources, like remove JWKS. We want to avoid malicious actors to reach internal endpoints.
We should implement on the DNS resolver level IP and DNS filtering. The default IP blacklist in Synapse could be useful.
The text was updated successfully, but these errors were encountered: