Maverick Legacy Server 1.7.42

a room full of servers at a data center

This release contains a critical security update after the introduction of Proxy Protocol in the previous 1.7.41 release. If you are using 1.7.41 in production, we strongly recommend upgrading to this new version as soon as possible.

Proxy Protocol Security

In our initial implementation of the Proxy Protocol, a user with the appropriate knowledge can spoof their IP address and bypass IP restrictions you may have in place.

We have introduced a flag to enable the proxy protocol to mitigate this issue. Only when enabled will the server process the IP addresses supplied by the incoming connection.

sshContext.getLoadBalancerPolicy().setProxyProtocolEnabled(true);

This option turns on the service, which is available to any client. You can further restrict access to the protocol by incoming IP address.

sshContext.getLoadBalancerPolicy().setRestrictedAccess(true);
sshContext.getLoadBalancerPolicy().allowIPAddress("192.168.2.9");

If you have any questions or concerns, please contact us through the usual support channels.

For a complete list of changes, please visit our Changelog:
https://jadaptive.com/app/api/versions/changes/Maverick Legacy Server/