IP whitelisting mitigated a critical security issue
IP whitelisting is old-school. But it’s also a simple way to add a surprisingly strong second layer of defence. Here’s how it saved us during a security audit.
The mistake: Trusting the Host header
We had a vulnerability in the “Forgot password” feat...
blog.juhawilppu.com2 min read