Update docker compose example in the docs for better security? #1290
Replies: 2 comments 1 reply
-
|
I think your comment is correct, see the warning on https://docs.docker.com/engine/network/#published-ports:
|
Beta Was this translation helpful? Give feedback.
-
|
Hey @BernhardBaumrock! Thanks for the heads up! Could you open a PR on https://github.com/gotenberg/gotenberg.dev? |
Beta Was this translation helpful? Give feedback.
-
|
Thx @gulien I'll try to prepare something! |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Hey @gulien thx for your great tool!
I'm not a docker expert and I recently found out that if you add a port mapping like "ports 3000:3000" to your docker compose file, which is exactly what is suggested in the docs, you will expose port 3000 on your host even if you have a firewall like UFW! This seems to be a common pitfall with docker hosting and luckily it's quite easy to fix.
https://gotenberg.dev/docs/getting-started/installation#docker-compose
Maybe it would be good to add a note that when using the example in the docs you will probably expose port 3000 to the public even if you have an active firewall blocking that port!
To fix this you can bind the 3000 port only to the localhost IP:
I hope I'm not missing anything and I'm happy to be corrected if anything is wrong :)
Beta Was this translation helpful? Give feedback.
All reactions