From 39206089c0094dcf075e07b19e7eda9ada47d020 Mon Sep 17 00:00:00 2001
From: Shuanglei Tao <tsl0922@gmail.com>
Date: Thu, 27 Apr 2023 12:40:10 +0800
Subject: [PATCH] server: do not expose port to public by default

CVE-2021-34182 #692
---
 src/server.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/server.c b/src/server.c
index cc398bc5..6e74bc24 100644
--- a/src/server.c
+++ b/src/server.c
@@ -324,7 +324,7 @@ int main(int argc, char **argv) {
   info.max_http_header_data = 65535;
 
   int debug_level = LLL_ERR | LLL_WARN | LLL_NOTICE;
-  char iface[128] = "";
+  char iface[128] = "127.0.0.1";
   char socket_owner[128] = "";
   bool browser = false;
   bool ssl = false;