diff options
author | Stefan Giehl <stefan@matomo.org> | 2021-01-19 06:46:00 +0300 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-01-19 06:46:00 +0300 |
commit | 1a053135be3cf7267e970530235e5267160cd62c (patch) | |
tree | 0a24d95611ed0f1624eccfe31e7d40b7ff331a77 /config | |
parent | 4e55cd0ee759a73dd3479530ab1500ef2ba16488 (diff) |
Limit GeoIP downloads to certain hosts only (#17097)
* Limit GeoIP downloads to certains hosts only
* make geoip error message translatable
* apply review feedback
Diffstat (limited to 'config')
-rwxr-xr-x | config/global.ini.php | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/config/global.ini.php b/config/global.ini.php index a1896d9d59..73e55f6461 100755 --- a/config/global.ini.php +++ b/config/global.ini.php @@ -404,6 +404,11 @@ force_ssl = 0 ; This can add an additional layer of security as SERVER_NAME can not be manipulated by sending custom host headers when configure correctly. host_validation_use_server_name = 0 +; This list defines the hostnames that a valid sources to download GeoIP databases from. Subdomains of those hostnames will be accepted automatically. +geolocation_download_from_trusted_hosts[] = maxmind.com +geolocation_download_from_trusted_hosts[] = db-ip.com +geolocation_download_from_trusted_hosts[] = ip2location.com + ; Session garbage collection on (as on some operating systems, i.e. Debian, it may be off by default) session_gc_probability = 1 |