[
https://issues.apache.org/jira/browse/OFBIZ-11588?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17077247#comment-17077247 ]
Jacques Le Roux edited comment on OFBIZ-11588 at 4/7/20, 1:42 PM:
------------------------------------------------------------------
https://serverfault.com/questions/78048/whats-the-difference-between-ip-address-0-0-0-0-and-127-0-0-1https://github.com/Pylons/pyramid/issues/489https://www.ibm.com/support/pages/vulnerability-scan-highlights-0000-http-server-listening-portsetc.
was (Author: jacques.le.roux):
https://serverfault.com/questions/78048/whats-the-difference-between-ip-address-0-0-0-0-and-127-0-0-1https://github.com/Pylons/pyramid/issues/489> Have 'host-headers-allowed' validation all local headers
> --------------------------------------------------------
>
> Key: OFBIZ-11588
> URL:
https://issues.apache.org/jira/browse/OFBIZ-11588> Project: OFBiz
> Issue Type: Improvement
> Components: framework/security
> Affects Versions: Trunk
> Reporter: Pierre Smits
> Assignee: Pierre Smits
> Priority: Major
> Labels: CSRF, security
>
> The ip address 0.0.0.0 is missing from the list.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
Locked
