git-annex/doc/devblog/day_501__security_hole_part_3.mdwn

Got the IP address restrictions for http implemented. (Except for http
proxies.)

Unforunately as part of this, had to make youtube-dl and curl not be used
by default. The annex.security.allowed-http-addresses config has to be
opened up by the user in order to use those external commands, since they
can follow arbitrary redirects.

Also thought some more about how external special remotes might be
affected, and sent their authors' a heads-up.

[[!meta date="June 17 2018 4:00 pm"]]
add 2018-06-17 20:13:45 +00:00			`Got the IP address restrictions for http implemented. (Except for http`
			`proxies.)`

			`Unforunately as part of this, had to make youtube-dl and curl not be used`
			`by default. The annex.security.allowed-http-addresses config has to be`
			`opened up by the user in order to use those external commands, since they`
			`can follow arbitrary redirects.`

			`Also thought some more about how external special remotes might be`
			`affected, and sent their authors' a heads-up.`

			`[[!meta date="June 17 2018 4:00 pm"]]`