DNP_DAPPMANAGER icon indicating copy to clipboard operation
DNP_DAPPMANAGER copied to clipboard

Published 20 hours ago verified publisher icon dappnode

Consider not exposing ports by default

Open pablomendezroyo opened this issue 3 years ago • 1 comments

Context

HTTP ports defined in the compose file are exposed by default by docker, and in the near future HTTPS ports could be exposed as well (see https://github.com/dappnode/DNP_DAPPMANAGER/issues/970). These might be a security hole and the user might do not want to expose such ports. However, these ports could be mandatory for the package to work properly.

To discuss

  • Should be HTTP and HTTPS ports exposed by default?
  • Should the user be advised which ports will be exposed during the package installation?
  • Should we set a boolean flag in the setup-wizard to ask the user to expose or not the ports during the package installation?
  • ?

cc: @3alpha

pablomendezroyo avatar Feb 25 '22 09:02 pablomendezroyo

Another approach would be to to have a button to disable this expose ports

pablomendezroyo avatar Mar 04 '24 14:03 pablomendezroyo