Neo4j in Docker needs to be secured

varchashva / LetsMapYourNetwork

Lets Map Your Network enables you to visualise your physical network in form of graph with zero manual error

GNU General Public License v3.0

438 stars 77 forks source link

Neo4j in Docker needs to be secured #13

Open Cougar opened 5 years ago

Cougar commented 5 years ago

This line

https://github.com/varchashva/LetsMapYourNetwork/blob/816308d287528ad19d7c21dd91ba474c784643a0/docker-compose.yml#L9

makes Neo4j open for anyone in the world (if you are not behind firewall/NAT). It should either not use 'host' network, listen 127.0.0.1 or should be secured with password/firewall but current setup is insecure.

varchashva commented 5 years ago

This line

https://github.com/varchashva/LetsMapYourNetwork/blob/816308d287528ad19d7c21dd91ba474c784643a0/docker-compose.yml#L9

makes Neo4j open for anyone in the world (if you are not behind firewall/NAT). It should either not use 'host' network, listen 127.0.0.1 or should be secured with password/firewall but current setup is insecure.

Hi @Cougar - let me analyse it and I will get back to you. thanks!