|
 |
121f36 |
From 4397b3376dc4e4cb1c991d0aed61ce6482614196 Mon Sep 17 00:00:00 2001
|
|
|
121f36 |
From: Joshua Hill <posixninja@gmail.com>
|
|
|
121f36 |
Date: Tue, 29 Dec 2015 23:09:37 +0100
|
|
|
121f36 |
Subject: [PATCH] common: [security fix] Make sure sockets only listen locally
|
|
|
121f36 |
|
|
|
121f36 |
---
|
|
|
121f36 |
common/socket.c | 4 ++--
|
|
|
121f36 |
1 file changed, 2 insertions(+), 2 deletions(-)
|
|
|
121f36 |
|
|
|
121f36 |
diff --git a/common/socket.c b/common/socket.c
|
|
|
121f36 |
index 27b93ba..4cdefd6 100644
|
|
|
121f36 |
--- a/common/socket.c
|
|
|
121f36 |
+++ b/common/socket.c
|
|
|
121f36 |
@@ -203,7 +203,7 @@ int socket_create(uint16_t port)
|
|
|
121f36 |
|
|
|
121f36 |
memset((void *) &saddr, 0, sizeof(saddr));
|
|
|
121f36 |
saddr.sin_family = AF_INET;
|
|
|
121f36 |
- saddr.sin_addr.s_addr = htonl(INADDR_ANY);
|
|
|
121f36 |
+ saddr.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
|
|
|
121f36 |
saddr.sin_port = htons(port);
|
|
|
121f36 |
|
|
|
121f36 |
if (0 > bind(sfd, (struct sockaddr *) &saddr, sizeof(saddr))) {
|
|
|
121f36 |
@@ -368,7 +368,7 @@ int socket_accept(int fd, uint16_t port)
|
|
|
121f36 |
|
|
|
121f36 |
memset(&addr, 0, sizeof(addr));
|
|
|
121f36 |
addr.sin_family = AF_INET;
|
|
|
121f36 |
- addr.sin_addr.s_addr = htonl(INADDR_ANY);
|
|
|
121f36 |
+ addr.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
|
|
|
121f36 |
addr.sin_port = htons(port);
|
|
|
121f36 |
|
|
|
121f36 |
addr_len = sizeof(addr);
|