Merge b57bba48a9a35fdbea1a620260a7cb5a71a65354 into cf025d63207b4a2872ba946dc32ab56b3f98053a

Some people set servers in purpose to be accessed though public internet. This line removes some misconfiguration if they want publicly accessed server.

README.md

@@ -534,6 +534,8 @@ webServer.password = "admin"
 
 Then visit `http://[serverAddr]:7500` to see the dashboard, with username and password both being `admin`.
 
+Note that if you want your server to be accessed from public networks, then also add `webServer.addr = "0.0.0.0"` line. For security reasons (credits [#3709](https://github.com/fatedier/frp/issues/3709)), value `127.0.0.1` is used by default. 
+
 Additionally, you can use HTTPS port by using your domains wildcard or normal SSL certificate:
 
 ```toml
@@ -644,8 +646,8 @@ To **enforce** `frps` to only accept TLS connections - configure `transport.tls.
 
 ```toml
 transport.tls.enable = true
-transport.tls.certFile = "certificate.crt"
-transport.tls.keyFile = "certificate.key"
+transport.tls.certFile = "client.crt"
+transport.tls.keyFile = "client.key"
 transport.tls.trustedCaFile = "ca.crt"
 ```
 
@@ -653,8 +655,8 @@ transport.tls.trustedCaFile = "ca.crt"
 
 ```toml
 transport.tls.force = true
-transport.tls.certFile = "certificate.crt"
-transport.tls.keyFile = "certificate.key"
+transport.tls.certFile = "server.crt"
+transport.tls.keyFile = "server.key"
 transport.tls.trustedCaFile = "ca.crt"
 ```
 
@@ -714,6 +716,11 @@ openssl x509 -req -days 365 -sha256 \
 	-extfile <(printf "subjectAltName=DNS:localhost,IP:127.0.0.1,DNS:example.server.com") \
 	-out server.crt
 ```
+**Note: The above IP must be changed to your server IP, otherwise an error message will be displayed:**
+
+```
+tls: failed to verify certificate: x509: certificate is valid for 127.0.0.1, not your_ IP
+```
 
 * build frpc certificates：
 ```