(redo) updates-proxy: explicitly block connection looping back to the proxy IP

Explicitly block something like "curl http://127.0.0.1:8082" and
return error page in this case. This error page is used in Whonix to
detect if the proxy is torrified. If not blocked, it may happen that
empty response is returned instead of error. See linked ticket for
details.

This was previously done for 10.137.255.254, but since migration to
qrexec-based connection, 127.0.0.1 is used instead.

Fixes QubesOS/qubes-issues#1482

This commit is contained in:

Marek Marczykowski-Górecki

2017-09-15 05:00:05 +02:00

parent eec37d38d6

commit 6139ed59a3

No known key found for this signature in database

GPG Key ID: 063938BA42CFA724

1 changed files with 1 additions and 0 deletions

1

network/updates-blacklist

View File

 @ -1 +1,2 @@
 .137.255.254
 .0.0.1

(redo) updates-proxy: explicitly block connection looping back to the proxy IP

1 network/updates-blacklist Unescape Escape View File

1

network/updates-blacklist

View File