Index: openacs-4/packages/acs-tcl/tcl/security-procs.tcl
===================================================================
RCS file: /usr/local/cvsroot/openacs-4/packages/acs-tcl/tcl/security-procs.tcl,v
diff -u -N -r1.78.2.17 -r1.78.2.18
--- openacs-4/packages/acs-tcl/tcl/security-procs.tcl	19 Aug 2016 15:27:26 -0000	1.78.2.17
+++ openacs-4/packages/acs-tcl/tcl/security-procs.tcl	20 Aug 2016 06:58:14 -0000	1.78.2.18
@@ -1920,6 +1920,19 @@
         set $key 1
         return $host
     }
+
+    #
+    # Handle aliases for locations, which cannot be determined from
+    # config files, but which are supposed to be ok.
+    #
+    if {$hostName eq "localhost"} {
+        #
+        # This is not an attempt, where someone tries to lure us to a
+        # different host via redirect.
+        #
+        set $key 1
+        return $host
+    }
     
     #
     # We could/should check as well against a white-list of additional