[1] Protecting Browsers from DNS Rebinding Attacks (2009-08-03 07:55:07 +09:00 版) http://www.adambarth.com/papers/2009/jackson-barth-bortz-shao-boneh-tweb.pdf

[2]

689835 – Dns rebinding attack using cached resources ( (2016-06-16 18:30:24 +09:00)) https://bugzilla.mozilla.org/show_bug.cgi?id=689835#c9

It's not feasible for the browser to protect the user from DNS rebinding attacks. Servers need to protect themselves by validating the Host header and firewalls need to protect themselves by preventing external names from resolving to internal IP addresses.

[3] DNS Rebinding ( (2016-06-16 18:32:06 +09:00)) https://crypto.stanford.edu/dns/

[4] Issue 98357 - chromium - Security: browser dns rebinding attack using cached resources - Monorail ( (2016-06-16 18:33:02 +09:00)) https://bugs.chromium.org/p/chromium/issues/detail?id=98357

[5] 149943 – Use "DNS pinning" to prevent Princeton-like exploits ( (2016-06-16 18:38:46 +09:00)) https://bugzilla.mozilla.org/show_bug.cgi?id=149943

[6] DNS rebinding - Wikipedia (2017-11-25 02:48:26 +09:00) https://en.wikipedia.org/wiki/DNS_rebinding

[7] Goによるプライベートネットワークへのアクセスを禁止するHTTPクライアントの実装 - はこべにっき ♨ (2017-12-10 14:35:58 +09:00) http://hakobe932.hatenablog.com/entry/2015/08/05/093000