How can I hide the IP Address from crossdomain.xml file and give access to all the client IPs to access the server data from web server application.
Here is an example
The following are the client IPs 121.171.1.181 121.171.1.182 121.171.1.183 121.171.1.184
All the above client have demo.swf installed which has following url http://www.test.com/data.txt file to get the data to use in demo.swf file
Note: (I have 100 of client IPs in the production scenario)
Web Server www.test.com and following crossdomain.xml is located in the root
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="121.171.1.181" secure="false" to-ports="80" />
<allow-access-from domain="121.171.1.182" secure="false" to-ports="80" />
<allow-access-from domain="121.171.1.183" secure="false" to-ports="80" />
<allow-access-from domain="121.171.1.184" secure="false" to-ports="80" />
<allow-http-request-headers-from domain="121.171.1.181" headers="*" secure="false"/>
<allow-http-request-headers-from domain="121.171.1.182" headers="*" secure="false" />
<allow-http-request-headers-from domain="121.171.1.183" headers="*" secure="false" />
<allow-http-request-headers-from domain="121.171.1.184" headers="*" secure="false" />
</cross-domain-policy>
Problem: The security scanning software scans show the Internal IP Address identified in crossdomain.xml file.
How to hide the IP address in the crossdomain.xml file and allow all clients access the http://www.test.com/data.txt file.