feld on Nostr: Publishing ports explicitly to private networks should not be accessible from LAN ...
Publishing ports explicitly to private networks should not be accessible from LAN hosts · Issue #45610 · moby/moby
https://github.com/moby/moby/issues/45610This is crazy, why aren't they using separate routing tables so another host on the LAN can't send you traffic and have it happily forwarded into the docker network???????
Published at
2024-04-02 01:01:31Event JSON
{
"id": "1bb363ed8715af1f9aa7fdfdeaf07bbb9907b52170705fb90896e14e8512c58e",
"pubkey": "262d5a8a8201b6e0804087a9d26929935c7ac6682875b13fe24a5314a04a6cbf",
"created_at": 1712019691,
"kind": 1,
"tags": [
[
"zap",
"262d5a8a8201b6e0804087a9d26929935c7ac6682875b13fe24a5314a04a6cbf",
"wss://relay.mostr.pub",
"0.915"
],
[
"zap",
"6be38f8c63df7dbf84db7ec4a6e6fbbd8d19dca3b980efad18585c46f04b26f9",
"wss://relay.mostr.pub",
"0.085"
],
[
"proxy",
"https://bikeshed.party/objects/f1cd52b2-49c4-431e-9aaf-4ae02d63efc6",
"activitypub"
]
],
"content": "Publishing ports explicitly to private networks should not be accessible from LAN hosts · Issue #45610 · moby/moby https://github.com/moby/moby/issues/45610\n\nThis is crazy, why aren't they using separate routing tables so another host on the LAN can't send you traffic and have it happily forwarded into the docker network???????",
"sig": "80a24664791b3fc495caa7e9c6d0d9683704d837a694f45bf96b4b805bd3a7d79efc48e37f88bcbf08be59da4a3e1c3fc77949293659f0022827c1e010caeee3"
}
