[Rspamd-Users] Require Web UI password for localhost
Yves Goergen
nospam.list at unclassified.de
Mon Nov 23 12:43:18 UTC 2020
Never had any issues with SSH tunnels. They are required to access
local-only services like the database servers. These are not publicly
exposed.
I'm not sure how that binding to another network interface should look
like. I'd first have to create such an interface. And then, users could
still access that port because the interface is equally available. I
don't see the solution here.
-Yves
-------- Ursprüngliche Nachricht --------
Von: Tim Harman via Users <users at lists.rspamd.com>
Gesendet: Montag, 23. November 2020, 01:20 MEZ
Betreff: [Rspamd-Users] Require Web UI password for localhost
Why don't you unbind it from localhost and bind it to a specific
interface that you have appropriate IPtables etc rules in place for?
-!- rspamd/local.d » cat worker-controller.inc
bind_socket = "192.168.x.y:11334";
But yea if you're letting your webhosting users use SSH to port forward,
having rspamd open will soon be the least of your problems I'd suggest!
Tim
More information about the Users
mailing list