kale-samil Posted February 9, 2017 Share Posted February 9, 2017 Hello Everyone This is not just a new Unraid Repository. It is my own webapp written in java. It's an webapp to access your Samba-Shares via Web-UI. https://github.com/kale-samil/unraid-docker-templates Link to comment
RobJ Posted February 9, 2017 Share Posted February 9, 2017 Hello Everyone This is not just a new Unraid Repository. It is my own webapp written in java. It's an webapp to access your Samba-Shares via Web-UI. https://github.com/kale-samil/unraid-docker-templates Can I ask an experienced developer to check this out please? This user is brand new, registered minutes before posting, so we have no idea of their intentions or experience. I do apologize kale-samil for the requested inspection, it's just that we don't know you. You may after all be completely legitimate, but I'd feel better if we knew you better, before letting users load something to run on their systems, from a very first post. Link to comment
kale-samil Posted February 9, 2017 Author Share Posted February 9, 2017 Can I ask an experienced developer to check this out please? This user is brand new, registered minutes before posting, so we have no idea of their intentions or experience. I do apologize kale-samil for the requested inspection, it's just that we don't know you. You may after all be completely legitimate, but I'd feel better if we knew you better, before letting users load something to run on their systems, from a very first post. Oh, not their. Its just me :-D I didn't see that someone others templates where questioned... How can I legitimate myself? Link to comment
Squid Posted February 9, 2017 Share Posted February 9, 2017 http://lime-technology.com/forum/index.php?topic=40937.msg486569#msg486569 for a start Link to comment
kale-samil Posted February 9, 2017 Author Share Posted February 9, 2017 I already asked for the posibility to create a support thread. Thanks! Link to comment
Squid Posted February 9, 2017 Share Posted February 9, 2017 I already asked for the posibility to create a support thread. Thanks! And from looking at your user, you've been granted it. Link to comment
trurl Posted February 9, 2017 Share Posted February 9, 2017 I split this from limetech docker support thread. Will probably bilge it all after kale-samil creates support thread for this. Link to comment
CHBMB Posted February 9, 2017 Share Posted February 9, 2017 Sorry kale-samil but your dockerfile downloads a java package and I can see no way to look at the source code of this, short of opening the .jar file. Where is all the source code? If you take a look at our Linuxserver docker containers you'll see that not only do we publish the xml file, the dockerfile, we also link to the original application so the source can be traced upstream. Link to comment
JonathanM Posted February 9, 2017 Share Posted February 9, 2017 How can I legitimate myself? Post the source code to your app so we can look through it and verify it doesn't have any nasty surprises. I didn't see that someone others templates where questioned...These "others" write templates for open source projects, typically existing dockers or apps where all that is being done is minor customization for unraid. You have a totally different thing going. It is my own webapp written in java. It's an webapp to access your Samba-Shares via Web-UI. The fact that it's your own code, with no documentation, no source code, no peer review, nothing, makes this a whole different situation. It apparently provides a gateway between private data smb shares and publishes it via a web page. The security implications are huge! Link to comment
CHBMB Posted February 9, 2017 Share Posted February 9, 2017 We actually an application written by S7ark one of the ls.io members, called Davos. Here's the source code and documentation. Here's the dockerfile Should give you a better idea on best practice. Link to comment
RobJ Posted February 9, 2017 Share Posted February 9, 2017 I didn't see that someone others templates where questioned... You're probably right about that, there have probably been a few that passed by, and so far no problems we know of. But we're trying to be more security conscious, as this community keeps growing. We've always been a friendly and wide open community, and because we're growing we're becoming more of an attractive target, ripe for exploitation. It only makes sense we increase our community vigilance. How can I legitimate myself? I think you have had great answers above. Source code availability would be a great step. Be nice to also hear about your interest in unRAID, about your own server. At the same time, more software tools for unRAID users is a great thing! We're not trying to give you a hard time, just protect ourselves, and the rest of the community. Link to comment
kale-samil Posted February 13, 2017 Author Share Posted February 13, 2017 Thanks people, I will opensource my code soon. But then I hope for some feedback for the app! It is a unraid exclusive so far and I want to build some more nice things in it like automatic letzencrypt and duckdns etc... Im aiming for a lightweigt ownCloud :-D Link to comment
kale-samil Posted February 13, 2017 Author Share Posted February 13, 2017 As I promised: https://github.com/yaskor/whisk Hoping for feedback for the app! Link to comment
Recommended Posts
Archived
This topic is now archived and is closed to further replies.