diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0dc8b547d..d3c554245 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -65,6 +65,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
 - MRF: Support for filtering out likely spam messages by rejecting posts from new users that contain links.
 
 ### Changed
+- **Breaking:** bind to 127.0.0.1 instead of 0.0.0.0 by default
 - **Breaking:** Configuration: move from Pleroma.Mailer to Pleroma.Emails.Mailer
 - Thread containment / test for complete visibility will be skipped by default.
 - Enforcement of OAuth scopes
diff --git a/config/config.exs b/config/config.exs
index 3962ac019..0d07fc692 100644
--- a/config/config.exs
+++ b/config/config.exs
@@ -139,6 +139,7 @@
   instrumenters: [Pleroma.Web.Endpoint.Instrumenter],
   url: [host: "localhost"],
   http: [
+    ip: {127, 0, 0, 1},
     dispatch: [
       {:_,
        [