diff --git a/charts/sourcegraph/templates/otel-collector/otel-collector.ConfigMap.yaml b/charts/sourcegraph/templates/otel-collector/otel-collector.ConfigMap.yaml
index 0de56b69..4a42db65 100644
--- a/charts/sourcegraph/templates/otel-collector/otel-collector.ConfigMap.yaml
+++ b/charts/sourcegraph/templates/otel-collector/otel-collector.ConfigMap.yaml
@@ -14,8 +14,13 @@ data:
     receivers:
       otlp:
         protocols:
-          grpc: # port 4317
-          http: # port 4318
+          # Bind to all interfaces. Since v0.104.0, the collector defaults the OTLP
+          # receiver to 127.0.0.1 (CVE-2024-36129 hardening), which silently drops
+          # traffic from other pods. See https://opentelemetry.io/blog/2024/hardening-the-collector-one/
+          grpc:
+            endpoint: "0.0.0.0:4317"
+          http:
+            endpoint: "0.0.0.0:4318"
     {{ if .Values.openTelemetry.gateway.config.traces.processors }}
     processors:
       {{- toYaml .Values.openTelemetry.gateway.config.traces.processors | nindent 6 }}