Author gregory.p.smith
Recipients giampaolo.rodola, gregory.p.smith, ricexdream
Date 2021-03-13.10:30:43
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1615631443.48.0.378232895151.issue43285@roundup.psfhosted.org>
In-reply-to
Content
Indeed, the `host` on that line there should just be ignored with the IP address of the original data connection used in its place.

Your https://hackerone.com/reports/1040166 link provides plenty of information and likes to prior art mitigations other ftp clients including Firefox and Chrome well over a decade ago.
History
Date User Action Args
2021-03-13 10:30:43gregory.p.smithsetrecipients: + gregory.p.smith, giampaolo.rodola, ricexdream
2021-03-13 10:30:43gregory.p.smithsetmessageid: <1615631443.48.0.378232895151.issue43285@roundup.psfhosted.org>
2021-03-13 10:30:43gregory.p.smithlinkissue43285 messages
2021-03-13 10:30:43gregory.p.smithcreate