Why do you think that DNS is required? Anything malicious could (and likely shou... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		caymanjim 6 days ago \| parent \| context \| favorite \| on: Vaultwarden commit introduces SSO using OpenID Con... Why do you think that DNS is required? Anything malicious could (and likely should) hard-code an IP.

crimsonnoodle58 6 days ago [–]

You ensure DNS is disabled to stop DNS exfil. You can google it, but basically they exfil data by looking up encoded subdomains.

Hardcoding an IP won't help if the network policy disallows all network access.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact