发表新帖
发表新帖

Socket.io Security Issues

后端 未结
关注
2 893
庸人自扰
庸人自扰 2021-01-02 05:47

I\'m wondering how I could secure my socket.io connection to the server from th following.

Security Issues:

  • What would stop malicious users from connec
相关标签:
2条回答
  • 小鲜肉
    2021-01-02 06:38

    Well, if your (real) clients are coming from a well know location, you'd probably want to to block everyone else at the firewall level. Assuming your service is available to everyone, you can probably look into client-server handshake mechanism.

    0 讨论(0)
  • 自闭症患者
    2021-01-02 06:44

    You should be able to check serverside that the HTTP referrer is correct. Check the socket.io spec for info on both http referring as well as handshaking.

    https://github.com/socketio/socket.io-protocol

    Also 0.8 has referrer verification. Havent used it before, but this may be a place to start looking:

    https://github.com/LearnBoost/socket.io/pull/481

    0 讨论(0)
 看不清?
提交回复
热议问题