From f936c2231ce4272f5518eae20c2aad4492588be9 Mon Sep 17 00:00:00 2001 From: Hermes VM Date: Wed, 27 May 2026 21:53:08 +0000 Subject: [PATCH] docs: record product port hardening --- docs/vm-exposure-inventory.md | 12 ++++----- docs/vm-security-blind-spots-roadmap.md | 34 ++++++++++++++++++++++--- 2 files changed, 37 insertions(+), 9 deletions(-) diff --git a/docs/vm-exposure-inventory.md b/docs/vm-exposure-inventory.md index 074d40a..746bb01 100644 --- a/docs/vm-exposure-inventory.md +++ b/docs/vm-exposure-inventory.md @@ -56,10 +56,10 @@ These listeners were bound on `0.0.0.0` and/or `[::]` during review. | --- | --- | --- | --- | --- | --- | | `22` | `sshd` | host systemd | direct SSH | `public-direct` | Keep public only after SSH key hardening | | `80`, `443` | `caddy` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | public ingress | `public-caddy` | Keep public | -| `3000` | `notelett-web` | `/opt/bytelyst/learning_ai_notes/docker-compose.yml` | `notes.bytelyst.com` | `public-caddy` with direct bypass | Bind loopback or remove host port after Caddy smoke | +| `3000` | `notelett-web` | `/opt/bytelyst/learning_ai_notes/docker-compose.yml` | `notes.bytelyst.com` | `public-caddy` | Bound to `127.0.0.1` on 2026-05-27; keep Caddy route | | `3002` | `lysnrai-dashboard` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | none found in Caddy | `loopback-only` | Bound to `127.0.0.1` on 2026-05-27; still needs public/private product decision | | `3003` | `tracker-web` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `tracker.bytelyst.com` | `public-caddy` | Bound to `127.0.0.1` on 2026-05-27; keep Caddy route | -| `3030` | `chronomind-web` | `/root/bytelyst.ai/repos/learning_ai_clock/docker-compose.yml` | `clock.bytelyst.com` | `public-caddy` with direct bypass | Bind loopback or remove host port after Caddy smoke | +| `3030` | `chronomind-web` | `/root/bytelyst.ai/repos/learning_ai_clock/docker-compose.yml` | `clock.bytelyst.com` | `public-caddy` | Bound to `127.0.0.1` on 2026-05-27; keep Caddy route | | `3035` | `jarvisjr-web` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | none found in Caddy | `loopback-only` | Bound to `127.0.0.1` on 2026-05-27; still needs public/private product decision | | `3040` | `flowmonk-web` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | none found in Caddy | `loopback-only` | Bound to `127.0.0.1` on 2026-05-27; still needs public/private product decision | | `3049` | `devops-web` | `/opt/bytelyst/bytelyst-devops-tools/dashboard/docker-compose.yml` | `devops.bytelyst.com` | `private-admin` with direct bypass | Fix old repo path drift, then bind loopback/private | @@ -68,21 +68,21 @@ These listeners were bound on `0.0.0.0` and/or `[::]` during review. | `3060` | `actiontrail-web` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | none found in Caddy | `loopback-only` | Bound to `127.0.0.1` on 2026-05-27; still needs public/private product decision | | `3070` | `localmemgpt-web` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | none found in Caddy | `loopback-only` | Bound to `127.0.0.1` on 2026-05-27; still needs public/private product decision | | `3075` | `llmlab-dashboard` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `llmlab.bytelyst.com` | `private-admin` | Bound to `127.0.0.1` on 2026-05-27; still needs auth/private gate for Caddy route | -| `3085` | `invttrdg-web` | `/opt/bytelyst/learning_ai_invt_trdg/docker-compose.yml` | `invttrdg.bytelyst.com` | `public-caddy` with direct bypass | Bind loopback or remove host port after Caddy smoke | +| `3085` | `invttrdg-web` | `/opt/bytelyst/learning_ai_invt_trdg/docker-compose.yml` | `invttrdg.bytelyst.com` | `public-caddy` | Bound to `127.0.0.1` on 2026-05-27; keep Caddy route | | `3100` | `loki` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | none found in Caddy | `loopback-only` | Bound to `127.0.0.1` on 2026-05-27 | | `3300` | `gitea-npm-registry` | non-Compose container labels absent | `gitea.bytelyst.com` | `public-caddy` with direct bypass | Bind loopback or private; keep Caddy route | | `4004` | `devops-backend` | `/opt/bytelyst/learning_ai_devops_tools/dashboard/docker-compose.yml` | `api.bytelyst.com/devops/*` | `private-admin` with direct bypass | Bind loopback/private | | `4010` | `peakpulse-backend` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `api.bytelyst.com/peakpulse/*` | `public-caddy` | Host port removed by Compose recreate on 2026-05-27; keep Caddy route | -| `4011` | `chronomind-backend` | `/root/bytelyst.ai/repos/learning_ai_clock/docker-compose.yml` | `api.bytelyst.com/chronomind/*` | `public-caddy` with direct bypass | Bind loopback or remove host port after Caddy smoke | +| `4011` | `chronomind-backend` | `/root/bytelyst.ai/repos/learning_ai_clock/docker-compose.yml` | `api.bytelyst.com/chronomind/*` | `public-caddy` | Bound to `127.0.0.1` on 2026-05-27; keep Caddy route | | `4012` | `jarvisjr-backend` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `api.bytelyst.com/jarvisjr/*` | `public-caddy` | Host port removed by Compose recreate on 2026-05-27; keep Caddy route | | `4013` | `nomgap-backend` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `api.bytelyst.com/nomgap/*` | `public-caddy` | Host port removed by Compose recreate on 2026-05-27; keep Caddy route | | `4014` | `mindlyst-backend` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `api.bytelyst.com/mindlyst/*` | `public-caddy` | Host port removed by Compose recreate on 2026-05-27; keep Caddy route | | `4015` | `lysnrai-backend` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `api.bytelyst.com/lysnrai/*` | `public-caddy` | Host port removed by Compose recreate on 2026-05-27; keep Caddy route | -| `4016` | `notelett-backend` | `/opt/bytelyst/learning_ai_notes/docker-compose.yml` | `api.bytelyst.com/notelett/*` | `public-caddy` with direct bypass | Bind loopback or remove host port after Caddy smoke | +| `4016` | `notelett-backend` | `/opt/bytelyst/learning_ai_notes/docker-compose.yml` | `api.bytelyst.com/notelett/*` | `public-caddy` | Bound to `127.0.0.1` on 2026-05-27; keep Caddy route | | `4017` | `flowmonk-backend` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `api.bytelyst.com/flowmonk/*` | `public-caddy` | Host port removed by Compose recreate on 2026-05-27; keep Caddy route | | `4019` | `localmemgpt-backend` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `api.bytelyst.com/localmemgpt/*` | `public-caddy` | Host port removed by Compose recreate on 2026-05-27; keep Caddy route | | `4020` | `actiontrail-backend` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | `api.bytelyst.com/actiontrail/*` | `public-caddy` | Bound to `127.0.0.1` on 2026-05-27; route mapping still needs Caddy/product verification | -| `4025` | `invttrdg-backend` | `/opt/bytelyst/learning_ai_invt_trdg/docker-compose.yml` | `api.bytelyst.com/invttrdg/*` | `public-caddy` with direct bypass | Bind loopback or remove host port after Caddy smoke | +| `4025` | `invttrdg-backend` | `/opt/bytelyst/learning_ai_invt_trdg/docker-compose.yml` | `api.bytelyst.com/invttrdg/*` | `public-caddy` | Bound to `127.0.0.1` on 2026-05-27; keep Caddy route | | `1025` | `mailpit` SMTP | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | none found in Caddy | `loopback-only` | Bound to `127.0.0.1` on 2026-05-27 | | `8025` | `mailpit` UI | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | none found in Caddy | `loopback-only` | Bound to `127.0.0.1` on 2026-05-27 | | `10000` | `azurite` | `/opt/bytelyst/learning_ai_common_plat/docker-compose.ecosystem.yml` | none found in Caddy | `loopback-only` | Bound to `127.0.0.1` on 2026-05-27 | diff --git a/docs/vm-security-blind-spots-roadmap.md b/docs/vm-security-blind-spots-roadmap.md index 5d95efb..a2db40b 100644 --- a/docs/vm-security-blind-spots-roadmap.md +++ b/docs/vm-security-blind-spots-roadmap.md @@ -183,6 +183,7 @@ Effective `sshd -T` settings showed: - [ ] Bind non-public Compose ports to `127.0.0.1` or remove host port mapping entirely. - [x] Internal emulator/mail/observability ports `1025`, `8025`, `10000`, `1234`, `8081`, and `3100` are loopback-bound. - [x] Common-platform direct app/API bypasses are loopback-bound or removed from host publishing. + - [x] Notes, Clock, and InvtTrdg direct app/API bypasses are loopback-bound. - [ ] Add a `DOCKER-USER` chain policy to drop unsolicited traffic to non-approved published ports before Docker's accept rules. - [ ] Keep only `80/443` and intentionally public SSH exposed at the provider/firewall layer. - [ ] Add a recurring check that compares `ss -ltn` and Docker published ports against the approved inventory. @@ -393,6 +394,7 @@ Effective `sshd -T` settings showed: - [ ] Close or loopback-bind non-public Docker host ports. - [x] Loopback-bound internal emulator/mail/observability ports `1025`, `8025`, `10000`, `1234`, `8081`, and `3100`. - [x] Closed/loopback-bound common-platform direct app/API bypasses. + - [x] Loopback-bound Notes, Clock, and InvtTrdg direct app/API bypasses. - [ ] Add `DOCKER-USER` default-deny rules for non-approved ports. - [ ] Harden SSH root/password access after key-based access is verified. - [ ] Put `ollama.bytelyst.com`, admin dashboards, and dev tooling behind private/auth-gated access unless explicitly approved as public. @@ -592,11 +594,37 @@ Minimum post-checks for Phase 1: - Caddy public ingress: `80`, `443`. - Local Gitea direct port: `3300`. - DevOps dashboard/API: `3049`, `4004`. -- Notes direct ports: `3000`, `4016`. -- Clock direct ports: `3030`, `4011`. -- InvtTrdg direct ports: `3085`, `4025`. - Host Ollama still listens on wildcard `11434`. +### 2026-05-27 — Phase 1 product repo app/API bypasses + +**Changed:** + +- Updated `/opt/bytelyst/learning_ai_notes/docker-compose.yml` and `docker-compose.override.yml` so NoteLett backend/web bind to `127.0.0.1`. +- Updated `/root/bytelyst.ai/repos/learning_ai_clock/docker-compose.yml` so ChronoMind backend/web bind to `127.0.0.1`; also added `HOSTNAME=0.0.0.0` so the Next.js healthcheck works inside the container. +- Updated `/opt/bytelyst/learning_ai_invt_trdg/docker-compose.yml` so InvtTrdg backend/web bind to `127.0.0.1`. +- Recreated the affected services without rebuilding images. + +**Verified:** + +- Notes: `3000` and `4016` listen on `127.0.0.1`; local web/backend smoke checks returned HTTP `200`. +- Clock: `3030` and `4011` listen on `127.0.0.1`; local web/backend smoke checks returned HTTP `200`; containers are healthy. +- InvtTrdg: `3085` and `4025` listen on `127.0.0.1`; local web/backend smoke checks returned HTTP `200`. +- `docker ps --format ... | grep 0.0.0.0` now shows only Caddy `80/443`, Gitea `3300`, and DevOps `3049/4004` as Docker wildcard publishes. +- `docker ps --filter health=unhealthy` returned no unhealthy containers. + +**Committed/pushed:** + +- `learning_ai_notes`: `3683ba9` (`fix: bind Notes host ports to loopback`) pushed to GitHub. +- `learning_ai_clock`: `ee572f8` (`fix: bind Clock host ports to loopback`) pushed to GitHub. +- `learning_ai_invt_trdg`: `39490bc` (`fix: bind InvtTrdg host ports to loopback`) pushed to GitHub. + +**Remaining wildcard direct exposure after this checkpoint:** + +- Expected public ingress: `22`, `80`, `443`. +- Docker wildcard publishes still to fix: Gitea direct port `3300`, DevOps dashboard/API `3049` and `4004`. +- Host process still to fix: Ollama `11434`. + ## Do Not Start With - Rootless Docker migration.