I built an RPC checker where my server fetches a user-supplied URL — the textbook setup for SSRF. Here's how I made sure it can't be turned against my own infra.