Home Explore Help
Register Sign In
Apq
/
nextcloud-docs
mirror of https://github.com/docker-library/docs.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Merge pull request #1998 from infosiftr/fastcgi-considered-harmful

Add a warning about the extreme insecurity of FPM exposed externally
yosifkit 4 years ago
parent
b36bcc53b6 637123b39b
commit
cfbb3be50f
1 changed files with 2 additions and 0 deletions
Split View Show Diff Stats
  1. 2 0
      php/variant-fpm.md

+ 2 - 0
php/variant-fpm.md
View File 

@@ -11,3 +11,5 @@ Some potentially helpful resources:
 
 -	[very detailed article by Pascal Landau](https://www.pascallandau.com/blog/php-php-fpm-and-nginx-on-docker-in-windows-10/)
 
 -	[Stack Overflow discussion](https://stackoverflow.com/q/29905953/433558)
 
 -	[Apache httpd Wiki example](https://wiki.apache.org/httpd/PHPFPMWordpress)
 
+
 
+**WARNING:** the FastCGI protocol is inherently trusting, and thus *extremely* insecure to expose outside of a private container network -- unless you know *exactly* what you are doing (and are willing to accept the extreme risk), do not use Docker's `--publish` (`-p`) flag with this image variant.