You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Can we have a minimal HTTP server image, without stuff like Caddy, please?
Rationale
Security is important, and that is why many of us run docker containers behind something, like nginx, traefik, etc.
Including Caddy in an application image adds a layer of complexity - it increases the image size and requires additional configuration, for something (HTTPS) we probably don't need (at this specific layer).
I would assume that most of the audience of domain monitoring would at least have some basic understanding of web technologies and know that plain HTTP is not secure, and use their own judgement.
If someone needs Caddy, they can always add a Caddy to their setup (docker-compose or whatever). But if Caddy is bundled into the image, it is not as easy to remove for those who don't need it.
The UNIX philosophy of "do one thing, do it well" applies here.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Uh oh!
There was an error while loading. Please reload this page.
-
Idea
Can we have a minimal HTTP server image, without stuff like Caddy, please?
Rationale
Security is important, and that is why many of us run docker containers behind something, like nginx, traefik, etc.
Including Caddy in an application image adds a layer of complexity - it increases the image size and requires additional configuration, for something (HTTPS) we probably don't need (at this specific layer).
I would assume that most of the audience of domain monitoring would at least have some basic understanding of web technologies and know that plain HTTP is not secure, and use their own judgement.
If someone needs Caddy, they can always add a Caddy to their setup (docker-compose or whatever). But if Caddy is bundled into the image, it is not as easy to remove for those who don't need it.
The UNIX philosophy of "do one thing, do it well" applies here.
Beta Was this translation helpful? Give feedback.
All reactions