--- src/cf.data.pre.orig	2015-02-18 23:17:02.000000000 +1100
+++ src/cf.data.pre	2015-02-21 20:42:21.000000000 +1100
@@ -1387,7 +1387,7 @@
 # We strongly recommend the following be uncommented to protect innocent
 # web applications running on the proxy server who think the only
 # one who can access services on "localhost" is a local user
-#http_access deny to_localhost
+http_access deny to_localhost
 
 #
 # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS