marcelfolaron
commented
3 years ago On the bug it seemed like removing port 9000 was enough? I am wondering if removing the db port can be avoided?
Closed PascalBru closed 2 years ago
marcelfolaron
commented
3 years ago On the bug it seemed like removing port 9000 was enough? I am wondering if removing the db port can be avoided?
PascalBru
commented
3 years ago Yes because when the ports are exposed you allow the access to the world (docker changes iptables) and someone used my instance of php for mining. this crashed something inside of leantime. Because I don't want the database be available to everyone I suggest also removing the ports.
g0dISnowHere
commented
2 years ago can someone please merge this? Or at least change the docker-compose to not expose port 9000 to the world? I had a cryptominer on my installation within 6 hours of setting it up. The official installation guide doesn't expose it and creates a docker-network for the database, which imho is way more secure.
@marcelfolaron , why do you want to acces the database from the internet anyways?
When the ports of the db and php are not exposed to the world #27 is fixed