diff --git a/src/Helpers.hs b/src/Helpers.hs
index 7d666f6..434db89 100644
--- a/src/Helpers.hs
+++ b/src/Helpers.hs
@@ -4,7 +4,7 @@ module Helpers where
 
 import YTDL
 import qualified Data.Text.Lazy as TL
-import Network.URI (parseURI)
+import Network.URI
 
 getRes :: TL.Text -> Maybe Resolution
 getRes ("144p")  = Just P144
@@ -22,7 +22,13 @@ isRes res = case getRes res of
               (Just _) -> True
               _        -> False
 
+-- ssrf paranoia
+isOkPath :: String -> Bool
+isOkPath p = not $ isIPv4address p || isIPv6address p || p == "localhost"
+
 isURL :: TL.Text -> Bool
 isURL uri = case parseURI (TL.unpack uri) of
-              (Just _) -> True
-              _        -> False
+              (Just u) -> case uriAuthority u of
+                  (Just (URIAuth _ p _)) -> isOkPath p
+                  _                        -> False
+              _          -> False
diff --git a/src/Main.hs b/src/Main.hs
index 3d5a504..19b0e53 100644
--- a/src/Main.hs
+++ b/src/Main.hs
@@ -27,7 +27,6 @@ downloadAction = do
             setHeader "content-type" "video/mp4"
             file filePath
           (Left err) -> html $ errorPage (TL.pack err)
-        -- liftIO $ ytdlClean ident
       else
         html $ errorPage "Invalid input!"