Styjun

Dad jokes are fun

Count all vowels in string

Why did Jon Snow do this immoral act if he is so honorable?

Why does the hash of infinity have the digits of π?

Testing using real data of the customer

How to melt snow without fire or using body heat?

How does the Earth's center produce heat?

Removing the last element of a list

Can a UK national work as a paid shop assistant in the USA?

Why does splatting create a tuple on the rhs but a list on the lhs?

What could a self-sustaining lunar colony slowly lose that would ultimately prove fatal?

First Program Tic-Tac-Toe

Is keeping the forking link on a true fork necessary (Github/GPL)?

How to let other coworkers know that I don't share my coworker's political views?

Why would a rational buyer offer to buy with no conditions precedent?

Shorten or merge multiple lines of `&> /dev/null &`

Why do Russians almost not use verbs of possession akin to "have"?

Does "was machen sie" have the greeting meaning of "what do you do"?

Does an eye for an eye mean monetary compensation?

Is there a simple example that empirical evidence is misleading?

What would prevent living skin from being a good conductor for magic?

The disk image is 497GB smaller than the target device

Which European Languages are not Indo-European?

Co-author wants to put their current funding source in the acknowledgements section because they edited the paper

R Shiny and use of port 3838: a security vulnerability?

Best Practices for securing a REST API / web serviceSecure hash and salt for PHP passwordsWhat is the difference between Integrated Security = True and Integrated Security = SSPI?Worst security hole you've seen?What should every programmer know about security?Identifying Shiny app stability issuesTesting an R application deployed in Shiny Serverdownload image in R Shiny using download.fileShiny Server wont load appPreloaded Shiny Server Apps work fine however own apps failing to start?

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;

0

I'm going to deploy an R Shiny server (on Redhat) and it seems as if port 3838, which Shiny uses, may pose a security threat. I have sensitive raw data, which must not be accessed by the end user, who should, though, be able to access the Shiny app without logging in. So the Shiny app is an open applications, and I want to make sure noone exploits potential vulnerability of using port 3838.

Questions:

• Is port 3838 a security vulnerability?


• Alternatives that are safe and secure?

Very grateful for any advice.

r security web-applications shiny

share|improve this question

asked Mar 23 at 22:39

Adam RobinssonAdam Robinsson

4632624

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Not much of an expert in the field, but I can't see how a specific port might be a vulnerability by itself. I guess you are as safe as deploying through port 7547 for instance.
  
  – nicola
  Mar 23 at 22:42
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  The port is not the security issue itself. If you have sensitive data but anybody can access then the data is simply not safe in any sense. I think it makes no sense to secure the connection when you have no login. The shiny server Pro version offers both but is much to expansive for most of the applications I know. Some issues are discussed here link and here link
  
  – Alexander Leow
  Mar 24 at 17:36
  

  
  
  
  

add a comment | 

0

I'm going to deploy an R Shiny server (on Redhat) and it seems as if port 3838, which Shiny uses, may pose a security threat. I have sensitive raw data, which must not be accessed by the end user, who should, though, be able to access the Shiny app without logging in. So the Shiny app is an open applications, and I want to make sure noone exploits potential vulnerability of using port 3838.

Questions:

• Is port 3838 a security vulnerability?


• Alternatives that are safe and secure?

Very grateful for any advice.

r security web-applications shiny

share|improve this question

asked Mar 23 at 22:39

Adam RobinssonAdam Robinsson

4632624

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Not much of an expert in the field, but I can't see how a specific port might be a vulnerability by itself. I guess you are as safe as deploying through port 7547 for instance.
  
  – nicola
  Mar 23 at 22:42
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  The port is not the security issue itself. If you have sensitive data but anybody can access then the data is simply not safe in any sense. I think it makes no sense to secure the connection when you have no login. The shiny server Pro version offers both but is much to expansive for most of the applications I know. Some issues are discussed here link and here link
  
  – Alexander Leow
  Mar 24 at 17:36
  

  
  
  
  

add a comment | 

I'm going to deploy an R Shiny server (on Redhat) and it seems as if port 3838, which Shiny uses, may pose a security threat. I have sensitive raw data, which must not be accessed by the end user, who should, though, be able to access the Shiny app without logging in. So the Shiny app is an open applications, and I want to make sure noone exploits potential vulnerability of using port 3838.

Questions:

• Is port 3838 a security vulnerability?


• Alternatives that are safe and secure?

Very grateful for any advice.

r security web-applications shiny

share|improve this question

asked Mar 23 at 22:39

Adam RobinssonAdam Robinsson

4632624

share|improve this question

asked Mar 23 at 22:39

Adam RobinssonAdam Robinsson

4632624

share|improve this question

asked Mar 23 at 22:39

Adam RobinssonAdam Robinsson

4632624

asked Mar 23 at 22:39

Adam RobinssonAdam Robinsson

4632624

asked Mar 23 at 22:39

Adam RobinssonAdam Robinsson

4632624