more config comment updates

1565ebec · Richard van der Hoff · 1a7104fd · 1565ebec · 1565ebec
Commit 1565ebec authored 5 years ago by Richard van der Hoff
--- a/docs/sample_config.yaml
+++ b/docs/sample_config.yaml
@@ -521,8 +521,11 @@ uploads_path: "DATADIR/uploads"
 # synapse to issue arbitrary GET requests to your internal services,
 # causing serious security issues.
 #
-# This must be specified if url_preview_enabled. It is recommended that you
-# uncomment the following list as a starting point.
+# (0.0.0.0 and :: are always blacklisted, whether or not they are explicitly
+# listed here, since they correspond to unroutable addresses.)
+#
+# This must be specified if url_preview_enabled is set. It is recommended that 
+# you uncomment the following list as a starting point.
 #
 #url_preview_ip_range_blacklist:
 #  - '127.0.0.0/8'

--- a/synapse/config/repository.py
+++ b/synapse/config/repository.py
@@ -279,8 +279,11 @@ class ContentRepositoryConfig(Config):
        # synapse to issue arbitrary GET requests to your internal services,
        # causing serious security issues.
        #
-        # This must be specified if url_preview_enabled. It is recommended that you
-        # uncomment the following list as a starting point.
+        # (0.0.0.0 and :: are always blacklisted, whether or not they are explicitly
+        # listed here, since they correspond to unroutable addresses.)
+        #
+        # This must be specified if url_preview_enabled is set. It is recommended that
+        # you uncomment the following list as a starting point.
        #
        #url_preview_ip_range_blacklist:
        #  - '127.0.0.0/8'