You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@servicecomb.apache.org by "wujimin (JIRA)" <ji...@apache.org> on 2019/02/19 03:20:00 UTC

[jira] [Closed] (SCB-1140) 容器场景，默认配置服务监听地址0.0.0.0会有安全问题

     [ https://issues.apache.org/jira/browse/SCB-1140?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

wujimin closed SCB-1140.
------------------------
    Resolution: Not A Problem

> 容器场景，默认配置服务监听地址0.0.0.0会有安全问题
> ----------------------------
>
>                 Key: SCB-1140
>                 URL: https://issues.apache.org/jira/browse/SCB-1140
>             Project: Apache ServiceComb
>          Issue Type: Improvement
>          Components: Java-Chassis
>    Affects Versions: java-chassis-1.0.0-m1, java-chassis-1.0.0-m2, java-chassis-1.0.0, java-chassis-1.1.0
>            Reporter: yangwenjun
>            Priority: Minor
>          Time Spent: 20m
>  Remaining Estimate: 0h
>
> 目前，服务监听地址配置为0.0.0.0时，会监听0.0.0.0，而会默认随机选择一个网卡作为发布地址。
> 容器场景，业务开发无法得知实际的容器ip，通常会把监听地址配置为0.0.0.0。
> 与敏之和安全se确认，安全要求容器内也不可监听0.0.0.0的ip。
> 因此，当服务监听地址配置为0.0.0.0时，建议按服务发布地址的处理方式，随机选择一个网卡作为监听地址。



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)