Security Tips - Islandora-Devops/isle-dc GitHub Wiki

This is a list by container/volume/network/image/Docker/host computer of things to be mindful of and/or consider when running in production. Feel free to add anything you feel is useful to be mindful of in a production environment.

Containers

Solr

1. Solr's Dashboard is accessible by default even when EXPOSE_SOLR is set to false in .env file. Make sure you Make sure you limit access to the containers themselves and/or to other whitelisted IPS (not recommended in my opinion)
   • Traefik 2.0 & Docker 101
   • Traefik v2: IP whitelist for Docker containers
2. ...

Volumes

1. ...

Network

1. ...

Image

1. ...

Docker

1. ...

Host Computer

1. ...