this post was submitted on 28 Sep 2021
5 points (85.7% liked)
Run It Yourself
2976 readers
1 users here now
Overlaps somewhat with /c/floss_replacement and /c/privacy; crossposts welcome
founded 4 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
At my work we use docker and we use port:port for all containers everywhere. This is after staging database has been wiped by a "ransomware" attack.
Some people never learn... but if those ports are only exposed internally and there is a strong firewall to the outside it is somewhat less bad.
We use UFW and doing this on docker bypasses UFW.