You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@servicecomb.apache.org by GitBox <gi...@apache.org> on 2019/01/30 03:15:09 UTC

[GitHub] liubao68 edited a comment on issue #1078: [SCB-1140]容器场景，默认配置服务监听地址0.0.0.0会有安全问题

liubao68 edited a comment on issue #1078:  [SCB-1140]容器场景，默认配置服务监听地址0.0.0.0会有安全问题
URL: https://github.com/apache/servicecomb-java-chassis/pull/1078#issuecomment-458795719
 
 
   It's a paradox for "what you are expecting" vs "what you are doing". If you must use 0.0.0.0, how can you guarrantee the correct safe interface is choosen? The program can only choose the one indicated or do it randomly. 
   I think you got some misundenstanding about the vulnerablities may lead from listening to all interfaces. It's mainly a network configuration problems in docker.

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services