|
 |
612eec |
From df1f5c4d70d0c19ad40072f5246ca457e7f9849e Mon Sep 17 00:00:00 2001
|
|
|
612eec |
From: Joshua Hill <posixninja@gmail.com>
|
|
|
612eec |
Date: Tue, 29 Dec 2015 22:27:17 +0100
|
|
|
612eec |
Subject: [PATCH] common: [security fix] Make sure sockets only listen locally
|
|
|
612eec |
|
|
|
612eec |
---
|
|
|
612eec |
common/socket.c | 4 ++--
|
|
|
612eec |
1 file changed, 2 insertions(+), 2 deletions(-)
|
|
|
612eec |
|
|
|
612eec |
diff --git a/common/socket.c b/common/socket.c
|
|
|
612eec |
index b276864..e2968a6 100644
|
|
|
612eec |
--- a/common/socket.c
|
|
|
612eec |
+++ b/common/socket.c
|
|
|
612eec |
@@ -172,7 +172,7 @@ int socket_create(uint16_t port)
|
|
|
612eec |
|
|
|
612eec |
memset((void *) &saddr, 0, sizeof(saddr));
|
|
|
612eec |
saddr.sin_family = AF_INET;
|
|
|
612eec |
- saddr.sin_addr.s_addr = htonl(INADDR_ANY);
|
|
|
612eec |
+ saddr.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
|
|
|
612eec |
saddr.sin_port = htons(port);
|
|
|
612eec |
|
|
|
612eec |
if (0 > bind(sfd, (struct sockaddr *) &saddr, sizeof(saddr))) {
|
|
|
612eec |
@@ -329,7 +329,7 @@ int socket_accept(int fd, uint16_t port)
|
|
|
612eec |
|
|
|
612eec |
memset(&addr, 0, sizeof(addr));
|
|
|
612eec |
addr.sin_family = AF_INET;
|
|
|
612eec |
- addr.sin_addr.s_addr = htonl(INADDR_ANY);
|
|
|
612eec |
+ addr.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
|
|
|
612eec |
addr.sin_port = htons(port);
|
|
|
612eec |
|
|
|
612eec |
addr_len = sizeof(addr);
|