update readme
This commit is contained in:
David Claeys
parent
1a34d14bc3
commit
1dca3bdb49
@ -71,6 +71,8 @@ ENTRYPOINT ["dotnet", "test.dll"]
|
|||||||
|
|
||||||
### Security implications
|
### Security implications
|
||||||
|
|
||||||
|
#### Webserver and certificates
|
||||||
|
|
||||||
This images uses the system provided by Microsoft to generate a development certificate and uses the [Kestrel](https://learn.microsoft.com/en-us/aspnet/core/fundamentals/servers/?view=aspnetcore-9.0&tabs=windows) webserver.<br/>
|
This images uses the system provided by Microsoft to generate a development certificate and uses the [Kestrel](https://learn.microsoft.com/en-us/aspnet/core/fundamentals/servers/?view=aspnetcore-9.0&tabs=windows) webserver.<br/>
|
||||||
In previous .NET versions it was not recommended to expose Kestrel directly to the internet, now Microsoft claims you can do that if you want so.<br/>
|
In previous .NET versions it was not recommended to expose Kestrel directly to the internet, now Microsoft claims you can do that if you want so.<br/>
|
||||||
However you never should use the included development certificate included in this image when doing so.
|
However you never should use the included development certificate included in this image when doing so.
|
||||||
@ -84,3 +86,4 @@ The certificate included by default (generated through the _dotnet dev-certs_ co
|
|||||||
|
|
||||||
In practice it's much easier to expose the server through a proxy to the public (hence the recommended method).
|
In practice it's much easier to expose the server through a proxy to the public (hence the recommended method).
|
||||||
Depending on your use-case you event might consider to use docker networking in order to accomplish proper isolation.
|
Depending on your use-case you event might consider to use docker networking in order to accomplish proper isolation.
|
||||||
|
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user