dkirillov/distribution
1
0
Fork 0
forked from TrueCloudLab/distribution
Code Pull requests Activity

Update nginx.md

Browse source 
Fixed security warning, changed to "anyone who can log on to the server where your Docker Registry is running"
This commit is contained in:
Anne Henmi 2019-01-22 16:16:38 -07:00 committed by GitHub
parent f89f0867e2
commit 43b914b687
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
docs/recipes/nginx.md
View file

@ -40,8 +40,8 @@ proxy itself.
> ***NOTE:*** Docker does not recommend binding your registry to `localhost:5000` without
> authentication. This creates a potential loophole in your Docker Registry security.
> As a result, anyone with access to your Docker Registry can push images without
> authentication.
> As a result, anyone who can log on to the server where your Docker Registry is running
> can push images without authentication.
Furthermore, introducing an extra http layer in your communication pipeline
makes it more complex to deploy, maintain, and debug. Make sure the extra