Menu
▾
▴
#63 Better remote access
Currently enabling remote access has some problems.
Reasons for adding remote access:
- Use 3rd party tools against these targets (tools not installed inside the Dojo already)
- Allow multiple students to use the same instance of score tracking targets, such as WebGoat
Problems:
- need to comment out the “limit access to local area network” directives in /var/www/.htaccess (specal thanks to Etienne for discovering this issue.
Solution:
- include README-remote-access.txt with instructions on how to enable remote access
- consider script that would lower any intentional defenses that were intended for traditional Dojo use (e.g. hands-on conference where you do NOT want students accessing someone else's Dojo instance).
- fix misconfigurations that are making this hard, and that serve no defensive purpose
Discussion
