Thread: Calibre Content Server Security?
View Single Post
Old 04-20-2018, 11:49 AM   #2
kovidgoyal
creator of calibre
kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.
 
kovidgoyal's Avatar
 
Posts: 45,443
Karma: 27757438
Join Date: Oct 2006
Location: Mumbai, India
Device: Various
There is no security implication to that, if you try it yourself, you will see that all it returns is the root server page, which is public anyway. It does not actually proxy out. The only issue is perhaps that it wastes your server's bandwidth. I suppose I could add some code to the server to reject GET requests that dont start with /
kovidgoyal is offline   Reply With Quote