Security issue with attachment peaking #93
Labels
🪲 bug
Something isn't working
🔒 security
Security related ticket
server
Relates to the main binary (server or client)
Comments
binwiederhier
added
🪲 bug
binwiederhier
pushed a commit
that referenced
this issue
Jan 14, 2022
binwiederhier
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
With the attachment peaking feature for external URLs it was possible to probe localhost for open ports. I was not comfortable with leaving this in and it's tricky/impossible to isolate processes from the internal network, so I removed the feature.
The Android client will do the probing now.
The text was updated successfully, but these errors were encountered: