[Rspamd-Users] Require Web UI password for localhost

Yves Goergen nospam.list at unclassified.de
Mon Nov 23 12:43:18 UTC 2020

Never had any issues with SSH tunnels. They are required to access 
local-only services like the database servers. These are not publicly 

I'm not sure how that binding to another network interface should look 
like. I'd first have to create such an interface. And then, users could 
still access that port because the interface is equally available. I 
don't see the solution here.


-------- Ursprüngliche Nachricht --------
Von: Tim Harman via Users <users at lists.rspamd.com>
Gesendet: Montag, 23. November 2020, 01:20 MEZ
Betreff: [Rspamd-Users] Require Web UI password for localhost

Why don't you unbind it from localhost and bind it to a specific
interface that you have appropriate IPtables etc rules in place for?

-!- rspamd/local.d » cat worker-controller.inc
bind_socket = "192.168.x.y:11334";

But yea if you're letting your webhosting users use SSH to port forward,
having rspamd open will soon be the least of your problems I'd suggest!


More information about the Users mailing list