We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
Database Ports open in Firewall by default
Database Ports open in Firewall by default
Hiya,
Just noticed that there is a rule in the iptables firewall on a new install which opens up ports 3304 and 5432 by default. I'm thinking this should probably be OFF by default, and let people add it in if they need it. I turned mine off when I saw all the access attempts in /var/log/mysql/error.log.
Also, as a security point, the database users should probably be restricted to localhost by default too. Currently they're added with no host restrictions.
The combination of these two problems seems a little dangerous to me!
Just noticed that there is a rule in the iptables firewall on a new install which opens up ports 3304 and 5432 by default. I'm thinking this should probably be OFF by default, and let people add it in if they need it. I turned mine off when I saw all the access attempts in /var/log/mysql/error.log.
Also, as a security point, the database users should probably be restricted to localhost by default too. Currently they're added with no host restrictions.
The combination of these two problems seems a little dangerous to me!
Re: Database Ports open in Firewall by default
In some installs is needit
Of course is better take this off, but each sysadmin who configure it need know if need it or not.
Most people open this port, and also is needed for mysql remote servers.
Of course is better take this off, but each sysadmin who configure it need know if need it or not.
Most people open this port, and also is needed for mysql remote servers.