Encrypt the traffic between an app and the db #114

New Issue

knoflook · 2021-08-09T18:28:01Z

knoflook commented

2021-08-09 18:28:01 +00:00

Somebody on the internet says that the traffic between docker containers should be encrypted. We're not doing that (specifically with databases). This is not a huge security vulnerability for now but I think we should take care of that before beta.
https://security.stackexchange.com/questions/186838/should-the-traffic-between-the-containers-need-to-be-encrypted#186842

Here's a resource about how to generate ssl certs on postgres
https://dev.to/danvixent/how-to-setup-postgresql-with-ssl-inside-a-docker-container-5f3

I don't know how we want to go with implementing that (maybe a repo with a code snippet to put in compose.yml?) so I'm hoping somebody who knows more about docker wants to pick this up :)

Somebody on the internet says that the traffic between docker containers should be encrypted. We're not doing that (specifically with databases). This is not a huge security vulnerability for now but I think we should take care of that before beta. https://security.stackexchange.com/questions/186838/should-the-traffic-between-the-containers-need-to-be-encrypted#186842 Here's a resource about how to generate ssl certs on postgres https://dev.to/danvixent/how-to-setup-postgresql-with-ssl-inside-a-docker-container-5f3 I don't know how we want to go with implementing that (maybe a repo with a code snippet to put in compose.yml?) so I'm hoping somebody who knows more about docker wants to pick this up :)

decentral1se added the

question

label 2021-08-10 18:02:00 +00:00

knoflook referenced this issue from coop-cloud/firefly-iii

2021-08-11 08:24:50 +00:00

Encrypt traffic between firefly and database #2

knoflook referenced this issue from coop-cloud/firefly-iii

2021-08-11 09:28:16 +00:00

Encrypt traffic between firefly and database #2

decentral1se added this to the (deleted) milestone 2021-09-09 14:26:43 +00:00

Sign in to join this conversation.