Why does the Docker one click image expose the docker ports via UFW

October 11, 2018 302 views
Docker Ubuntu 18.04

In the default configuration of the one-click 18.04 docker image the ports 2375 & 2376 are exposed via UFW.

Is there any reason for this? By default, docker isn't listening on those ports. And even if it were it seems highly questionable opening up it's API to the world by default.

1 comment
  • I was just about to ask the same thing. But when I run an nmap scan it returns 'filtered' instead of open for some reason.

2 Answers

Is the API protected via TLS authentication by default? Otherwise that's trouble waiting to happen.

Have another answer? Share your knowledge.