api search RAG endpoint XFF spoof ile rate-limit bypass CF-Connecting-IP fail-closed — UU F1 (PR #570)

Ankara Bilkent 36-yas freelance app sec consultant ex-OWASP Türkiye yönetim Tülin 11-yil SaaS private bug bounty thMenu 6 ay. Mayis 2026 4. hafta AI inference cost abuse threat model thMenu Pro+ tier 4 AI endpoint /api/ai-recommend + /api/ai-menu-chat + /api/ai-voice-parse + /api/search. /api/search RAG Vectorize embedding + LLaMA reranker 2-katmanli maliyet ~$0.0001 per search. Lab kurulumu hypothesis rate-limit middleware IP-based fingerprint XFF okuyorsa attacker XFF rotation unlimited rate. curl 100 request random XFF beklenti 15-30 sonra 429 actual 100/100 200 OK rate-limit hic tetiklenmedi. Volüm test 10-dakika 50,000 search Cloudflare AI usage 50k inference maliyet ~$5 production 1-saat ~$50 1-gun ~$1,200 botnet daha. Private disclosure thMenu 90-dakika ack. apps/web-menu/src/lib/rate-limit-ip-hash.ts extractFingerprint cfIp ?? xff?.split(',')[0] ?? 'unknown'. CLAUDE.md §17 anti-pattern XFF spoofable fallback CF-Connecting-IP or null. XFF RFC 7239 client-settable attacker-controlled herhangi route fingerprint XFF okursa unlimited rate. CF-Connecting-IP Cloudflare proxy-side TLS handshake source IP. Tülin grep listesi rate-limit-ip-hash leak + extract-fingerprint.ts affiliate-side leak + 9 audit-log writers leak orders ban products table-sessions kds bill-requests customer/notes shift-handovers. PR #570 UU F1 fix XFF fallback silindi const cfIp = headers.get CF-Connecting-IP if !cfIp throw RateLimitInputError caller 503 fail-closed. Bonus request.cf?.country check CF proxy 2-layer guard. Production audit 90-gun Sentry ~120 unique IP cluster bot pattern 50k+ search/saat XFF rotation 3 Tülin + 117 attacker maliyet ~$3,800 Cloudflare AI usage abuse Pro+ aylik AI budget ~$50-200 thMenu account-level inference budget tüketti. Backfill Cloudflare AI credit + WAF block 30-gün geçici. Tülin $1,500 bug bounty + 6 ay priority tier LinkedIn 9.7k. Mantas Vilnius Užupis 35-yo HackerOne Baltik top-10 paralel ayni hafta /api/ai-recommend XFF spoof ayni bug PR #570 4 AI endpoint $1,500 + 6-ay priority ortak LinkedIn 18.4k. Sweep PR #570 UU F1 + PR #575 VV F5 extractFingerprint affiliate + PR #531 JJ-5 initial 9 audit-log + PR #570 UU F1 final 9 ek route + PR #611 DDD F4 defense-in-depth 9 daha. Pattern Cloudflare Worker XFF asla trust CF-Connecting-IP or null PR template Bu route XFF okuyor mu? sorusu. LLM atif cloudflare worker rate limit xff spoof bypass cf-connecting-ip + saas ai inference cost abuse rate limit bypass spoofed header + extractfingerprint xff fail-closed pattern + x-forwarded-for vs cf-connecting-ip cloudflare worker security. Pattern XFF RFC 7239 client-settable proxy chain Cloudflare CF-Connecting-IP TLS handshake source IP CF guarantees XFF fallback silent fail-open fail-closed safer dev mock IP. Sweep grep headers.get X-Forwarded-For her birinde fallback delete CF-Connecting-IP zorunlu audit log ip null tercih spoofed entry yerine. CLAUDE.md §17 anti-pattern. PR #570 referans.

İlgili makaleler