What's

new

Anchor
Blacklist_optn Blacklist_optn

Blacklist domains option in Global Configuration

Users Administrators can now blacklist choose to blacklist a pre-defined list of private networks, hosts or subnets to avoid Server Side Request Forgeries (SSRF) through the using the Blacklist domains configuration option.  configuration option. This feature comes in handy when deploying your instance to any Cloud platform such as Amazon Web Services (AWS), Microsoft Azure, and so on.

By default, this option is disabled. If enabled, users can view a list of sites that are commonly blacklisted. If and if a request from any of these the blacklisted sites is received after enabling the option, the user is prompted to contact the System Administrator for further processing, or, an , an error message is displayed.

Image Removed

To view the default list of sites that can be blacklisted, click the link named listed. A pop-up with the most commonly blacklisted sites appears as shown:

Image Removed

However, if users still need to access a blacklisted site, they must contact their system administrator to disable this option. Click the link named listed (in the description beneath the option) to view the pre-defined list of the most commonly blacklisted domains in a pop-up window.

Image Added

Anchor
Enhanced_XSS_security Enhanced_XSS_security

Enhanced security against XSS vulnerabilities

This app version now has provides enhanced security implemented to handle any cross-site scripting from the macros.

Image Added