YunoHost-Apps/synapse_ynh
1
0
Fork 0
mirror of https://github.com/YunoHost-Apps/synapse_ynh.git synced 2024-09-03 20:26:38 +02:00
Code Issues Activity Actions

turnserver.conf: remove no-loopback-peers

Browse source 
See 8a60754d70

Option removed in 4.5.2. This was a sane default before, but now coturn complains on startup that this option is invalid:
> Bad configuration format: no-loopback-peers

See also:
cve-2020-26262
https://github.com/coturn/coturn/security/advisories/GHSA-6g6j-r9rf-cm7p
https://www.rtcsec.com/article/cve-2020-26262-bypass-of-coturns-access-control-protection/
https://www.mageni.net/vulnerability/coturn-452-loopback-bypass-vulnerability-145204
This commit is contained in:
Mayeul Cantan 2022-10-19 11:53:52 +02:00 committed by GitHub
parent fbd09ea95f
commit 20910ed00b
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 0 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
conf/turnserver.conf
View file

@ -18,7 +18,6 @@ no-sslv3
no-tlsv1
no-tlsv1_1
no-loopback-peers
no-multicast-peers
no-cli