perfSONAR User Q&A and Other Discussion

[Mark Feit <>]

Johann Hugo writes:

 

I've got the testpoint image working, but I was wondering if there are any plans to have a full toolkit docker image as well. 

 

Installation testing for the toolkit is done inside a container, so it is doable.  Nobody’s run it extensively, so we don’t know if there are any hidden pitfalls. Thanks for bringing this up; we tend to direct our efforts toward things the community lets us know they want.

 

I was also wondering if the blank Apache page with the testpoint docker image is normal, or is it a security concern.

 

It is normal; the testpoint bundle doesn’t alter the Apache configuration because it’s sometimes installed alongside other things and we’d risk overwriting other things.  (It’s kind of a darned-if-we-do, darned-if-we-don’t problem.)

 

I suppose it might be considered a security concern if someone on the outside sees it, decides it’s an Apache server in the default configuration and decides to try known attacks on it.  On the other hand, someone wanting to size the server up as a target is unlikely to care about what’s on the front page and would probably just launch attacks anyway.  The default Apache page doesn’t have any vulnerabilities that we know of.  The rest of the system is subjected to fairly regular security audits by a few of our users who aren’t shy about telling us what they find, so we’re probably in decent shape on that front.

 

--Mark