cqrenet/relay
4
0
Fork 0
mirror of https://github.com/chatmail/relay.git synced 2026-05-20 12:58:04 +00:00
Code Issues Packages Projects Releases Wiki Activity

docker: expand security notice

Browse Source
This commit is contained in:
j4n
2026-02-23 09:30:00 +01:00
parent a98910f94a
commit 0b8521300b
1 changed files with 9 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
docker-compose.yaml
View File

@@ -2,11 +2,15 @@
# volumes, env overrides) in docker-compose.override.yaml instead. # volumes, env overrides) in docker-compose.override.yaml instead.
# See docker/docker-compose.override.yaml.example for a starting point. # See docker/docker-compose.override.yaml.example for a starting point.
# #
# Security note: this container uses network_mode:host (chatmail needs many # Security notes: this container uses
# ports: 25, 53, 80, 143, 443, 465, 587, 993, 3340, 8443) and cgroup:host # - network_mode:host chatmail needs many ports (25, 53, 80, 143, 443, 465,
# (required for systemd). Together these give the container near-host-level # 587, 993, 3340, 8443) and needs to operate from the real IP, which bridging
# access. This is acceptable for a dedicated mail server, but be aware that # would make tricky
# the container can bind any port and see all host network traffic. # - cgroup:host (required for systemd).
# Together these give the container near-host-level access. This is acceptable
# for a dedicated mail server, but be aware that the container can bind any
# port and see all host network traffic.
services: services:
chatmail: chatmail:
build: build: