Security · 1h ago
Origin IP exposure tool reveals CDN bypass risk
A developer built a Rust tool to check if a site's origin server is reachable past its CDN. It uses certificate transparency logs and DNS history to find leaked IPs. The tool tests direct connections to those IPs, bypassing the CDN's protection.
Meridian48 take
The tool highlights a common oversight: CDNs only protect traffic that goes through them, and origin IPs often leak through subdomains or historical records.
Read the full reporting
I put Cloudflare in front of my site, then found my origin one DNS record away from undoing it →
DEV Community
cdn-securityorigin-ip-exposure