server: do not expose port to public by default

CVE-2021-34182 #692
2025-12-24 12:44:20 +01:00 · 2023-04-27 12:40:10 +08:00
parent e12f32167f
commit 39206089c0
1 changed files with 1 additions and 1 deletions
--- a/src/server.c
+++ b/src/server.c
@@ -324,7 +324,7 @@ int main(int argc, char **argv) {
  info.max_http_header_data = 65535;

  int debug_level = LLL_ERR | LLL_WARN | LLL_NOTICE;
-  char iface[128] = "";
+  char iface[128] = "127.0.0.1";
  char socket_owner[128] = "";
  bool browser = false;
  bool ssl = false;