Dan Schimo
asked on
Address Hostheader attack issue security fix in ColdFusion.
ASKER
yes, we are using IIS.
ASKER
Thanks _agx_ . This issue definitely required a seasoned Programmer to respond. Could you point me to bindings in IIS? I need to forward it to my admin guys.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Open in new window
If you're using IIS, this thread also suggests using bindings to prevent the requests from reaching the web site. Sounds aimilar to the whitelist concept mentioned in the article.