From 39206089c0094dcf075e07b19e7eda9ada47d020 Mon Sep 17 00:00:00 2001 From: Shuanglei Tao Date: Thu, 27 Apr 2023 12:40:10 +0800 Subject: [PATCH] server: do not expose port to public by default CVE-2021-34182 #692 --- src/server.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/server.c b/src/server.c index cc398bc..6e74bc2 100644 --- a/src/server.c +++ b/src/server.c @@ -324,7 +324,7 @@ int main(int argc, char **argv) { info.max_http_header_data = 65535; int debug_level = LLL_ERR | LLL_WARN | LLL_NOTICE; - char iface[128] = ""; + char iface[128] = "127.0.0.1"; char socket_owner[128] = ""; bool browser = false; bool ssl = false; -- 2.43.4