R Shiny and use of port 3838: a security vulnerability?Best Practices for securing a REST API / web serviceSecure hash and salt for PHP passwordsWhat is the difference between Integrated Security = True and Integrated Security = SSPI?Worst security hole you've seen?What should every programmer know about security?Identifying Shiny app stability issuesTesting an R application deployed in Shiny Serverdownload image in R Shiny using download.fileShiny Server wont load appPreloaded Shiny Server Apps work fine however own apps failing to start?

Dad jokes are fun

Count all vowels in string

Why did Jon Snow do this immoral act if he is so honorable?

Why does the hash of infinity have the digits of π?

Testing using real data of the customer

How to melt snow without fire or using body heat?

How does the Earth's center produce heat?

Removing the last element of a list

Can a UK national work as a paid shop assistant in the USA?

Why does splatting create a tuple on the rhs but a list on the lhs?

What could a self-sustaining lunar colony slowly lose that would ultimately prove fatal?

First Program Tic-Tac-Toe

Is keeping the forking link on a true fork necessary (Github/GPL)?

How to let other coworkers know that I don't share my coworker's political views?

Why would a rational buyer offer to buy with no conditions precedent?

Shorten or merge multiple lines of `&> /dev/null &`

Why do Russians almost not use verbs of possession akin to "have"?

Does "was machen sie" have the greeting meaning of "what do you do"?

Does an eye for an eye mean monetary compensation?

Is there a simple example that empirical evidence is misleading?

What would prevent living skin from being a good conductor for magic?

The disk image is 497GB smaller than the target device

Which European Languages are not Indo-European?

Co-author wants to put their current funding source in the acknowledgements section because they edited the paper



R Shiny and use of port 3838: a security vulnerability?


Best Practices for securing a REST API / web serviceSecure hash and salt for PHP passwordsWhat is the difference between Integrated Security = True and Integrated Security = SSPI?Worst security hole you've seen?What should every programmer know about security?Identifying Shiny app stability issuesTesting an R application deployed in Shiny Serverdownload image in R Shiny using download.fileShiny Server wont load appPreloaded Shiny Server Apps work fine however own apps failing to start?






.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;








0















I'm going to deploy an R Shiny server (on Redhat) and it seems as if port 3838, which Shiny uses, may pose a security threat. I have sensitive raw data, which must not be accessed by the end user, who should, though, be able to access the Shiny app without logging in. So the Shiny app is an open applications, and I want to make sure noone exploits potential vulnerability of using port 3838.



Questions:



  • Is port 3838 a security vulnerability?

  • Alternatives that are safe and secure?

Very grateful for any advice.






r security web-applications shiny







share|improve this question






















  • Not much of an expert in the field, but I can't see how a specific port might be a vulnerability by itself. I guess you are as safe as deploying through port 7547 for instance.

    – nicola
    Mar 23 at 22:42











  • The port is not the security issue itself. If you have sensitive data but anybody can access then the data is simply not safe in any sense. I think it makes no sense to secure the connection when you have no login. The shiny server Pro version offers both but is much to expansive for most of the applications I know. Some issues are discussed here link and here link

    – Alexander Leow
    Mar 24 at 17:36

















0















I'm going to deploy an R Shiny server (on Redhat) and it seems as if port 3838, which Shiny uses, may pose a security threat. I have sensitive raw data, which must not be accessed by the end user, who should, though, be able to access the Shiny app without logging in. So the Shiny app is an open applications, and I want to make sure noone exploits potential vulnerability of using port 3838.



Questions:



  • Is port 3838 a security vulnerability?

  • Alternatives that are safe and secure?

Very grateful for any advice.






r security web-applications shiny







share|improve this question






















  • Not much of an expert in the field, but I can't see how a specific port might be a vulnerability by itself. I guess you are as safe as deploying through port 7547 for instance.

    – nicola
    Mar 23 at 22:42











  • The port is not the security issue itself. If you have sensitive data but anybody can access then the data is simply not safe in any sense. I think it makes no sense to secure the connection when you have no login. The shiny server Pro version offers both but is much to expansive for most of the applications I know. Some issues are discussed here link and here link

    – Alexander Leow
    Mar 24 at 17:36













0












0








0








I'm going to deploy an R Shiny server (on Redhat) and it seems as if port 3838, which Shiny uses, may pose a security threat. I have sensitive raw data, which must not be accessed by the end user, who should, though, be able to access the Shiny app without logging in. So the Shiny app is an open applications, and I want to make sure noone exploits potential vulnerability of using port 3838.



Questions:



  • Is port 3838 a security vulnerability?

  • Alternatives that are safe and secure?

Very grateful for any advice.






r security web-applications shiny







share|improve this question














I'm going to deploy an R Shiny server (on Redhat) and it seems as if port 3838, which Shiny uses, may pose a security threat. I have sensitive raw data, which must not be accessed by the end user, who should, though, be able to access the Shiny app without logging in. So the Shiny app is an open applications, and I want to make sure noone exploits potential vulnerability of using port 3838.



Questions:



  • Is port 3838 a security vulnerability?

  • Alternatives that are safe and secure?

Very grateful for any advice.






r security web-applications shiny




r security web-applications shiny






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Mar 23 at 22:39









Adam RobinssonAdam Robinsson

4632624




4632624












  • Not much of an expert in the field, but I can't see how a specific port might be a vulnerability by itself. I guess you are as safe as deploying through port 7547 for instance.

    – nicola
    Mar 23 at 22:42











  • The port is not the security issue itself. If you have sensitive data but anybody can access then the data is simply not safe in any sense. I think it makes no sense to secure the connection when you have no login. The shiny server Pro version offers both but is much to expansive for most of the applications I know. Some issues are discussed here link and here link

    – Alexander Leow
    Mar 24 at 17:36

















  • Not much of an expert in the field, but I can't see how a specific port might be a vulnerability by itself. I guess you are as safe as deploying through port 7547 for instance.

    – nicola
    Mar 23 at 22:42











  • The port is not the security issue itself. If you have sensitive data but anybody can access then the data is simply not safe in any sense. I think it makes no sense to secure the connection when you have no login. The shiny server Pro version offers both but is much to expansive for most of the applications I know. Some issues are discussed here link and here link

    – Alexander Leow
    Mar 24 at 17:36
















Not much of an expert in the field, but I can't see how a specific port might be a vulnerability by itself. I guess you are as safe as deploying through port 7547 for instance.

– nicola
Mar 23 at 22:42





Not much of an expert in the field, but I can't see how a specific port might be a vulnerability by itself. I guess you are as safe as deploying through port 7547 for instance.

– nicola
Mar 23 at 22:42













The port is not the security issue itself. If you have sensitive data but anybody can access then the data is simply not safe in any sense. I think it makes no sense to secure the connection when you have no login. The shiny server Pro version offers both but is much to expansive for most of the applications I know. Some issues are discussed here link and here link

– Alexander Leow
Mar 24 at 17:36





The port is not the security issue itself. If you have sensitive data but anybody can access then the data is simply not safe in any sense. I think it makes no sense to secure the connection when you have no login. The shiny server Pro version offers both but is much to expansive for most of the applications I know. Some issues are discussed here link and here link

– Alexander Leow
Mar 24 at 17:36












0






active

oldest

votes












Your Answer






StackExchange.ifUsing("editor", function ()
StackExchange.using("externalEditor", function ()
StackExchange.using("snippets", function ()
StackExchange.snippets.init();
);
);
, "code-snippets");

StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "1"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);













draft saved

draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f55319040%2fr-shiny-and-use-of-port-3838-a-security-vulnerability%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown

























0






active

oldest

votes








0






active

oldest

votes









active

oldest

votes






active

oldest

votes















draft saved

draft discarded
















































Thanks for contributing an answer to Stack Overflow!


  • Please be sure to answer the question. Provide details and share your research!

But avoid


  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.

To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f55319040%2fr-shiny-and-use-of-port-3838-a-security-vulnerability%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Kamusi Yaliyomo Aina za kamusi | Muundo wa kamusi | Faida za kamusi | Dhima ya picha katika kamusi | Marejeo | Tazama pia | Viungo vya nje | UrambazajiKuhusu kamusiGo-SwahiliWiki-KamusiKamusi ya Kiswahili na Kiingerezakuihariri na kuongeza habari

Image
Pages using ISBN magic linksMbegu za lughaKamusiIsimu nenoKiarabukitabulughaKiswahilialfabetimaanaufafanuzimanenomuhtasarisarufividahizoalfabeti Kamusi Kutoka Wikipedia, kamusi elezo huru Jump to navigation Jump to search Kamusi za Kiswahili Kamusi ya Kiswahili-Kiswahili (kamusi wahidiya) Kamusi ya Kiswahili - Kiingereza (kamusi thania) Kamusi (kutoka neno la Kiarabu قاموس qamus ) ni kitabu ambacho kinaorodhesha maneno ya lugha yaliyokusanywa kutoka kwa watumiaji wa lugha fulani, kwa mfano lugha ya Kiswahili. Maneno hupangwa kwa mtindo wa alfabeti, hutoa maana, asili na ufafanuzi wa utumizi wa maneno na jinsi yanavyotumika au yanavyotamkwa. [1] Yaliyomo 1 Aina za kamusi 2 Muundo wa kamusi 2.1 1. Utangulizi wa kamusi 2.2 2. Matini ya kamusi 2.3 3. Sherehe ya kamusi 3 Faida za kamusi 4 Dhima ya picha katika kamusi 5 Marejeo 6 Tazama pia 7 Viungo vya nje Aina za kamusi | Kuna aina mbalimbali za kamusi ambazo ni: Kamusi wahidiya yaani ya l
Read more

Swift 4 - func physicsWorld not invoked on collision? The Next CEO of Stack OverflowHow to call Objective-C code from Swift#ifdef replacement in the Swift language@selector() in Swift?#pragma mark in Swift?Swift for loop: for index, element in array?dispatch_after - GCD in Swift?Swift Beta performance: sorting arraysSplit a String into an array in Swift?The use of Swift 3 @objc inference in Swift 4 mode is deprecated?How to optimize UITableViewCell, because my UITableView lags

Image
Strange use of "whether ... than ..." in official text Could a dragon use its wings to swim? Car headlights in a world without electricity How to avoid supervisors with prejudiced views? Is the offspring between a demon and a celestial possible? If so what is it called and is it in a book somewhere? Can I board the first leg of the flight without having final country's PR card? subequations: How to continue numbering within subequation? How do you define an element with an ID attribute using LWC? Relevant Part for a Badminton Serve What CSS properties can the br tag have? What are the unusually-enlarged wing sections on this P-38 Lightning? Why did early computer designers eschew integers? Is it a bad idea to plug the other end of ESD strap to wall ground? Magento 1.9 observer on only new product added ( no updated product ) Airplane gently rocking its wings during whole flight It is correct to match light sources with the same color temperat
Read more

Access current req object everywhere in Node.js ExpressWhy are global variables considered bad practice? (node.js)Using req & res across functionsHow do I get the path to the current script with Node.js?What is Node.js' Connect, Express and “middleware”?Node.js w/ express error handling in callbackHow to access the GET parameters after “?” in Express?Modify Node.js req object parametersAccess “app” variable inside of ExpressJS/ConnectJS middleware?Node.js Express app - request objectAngular Http Module considered middleware?Session variables in ExpressJSAdd properties to the req object in expressjs with Typescript

Image
What steps should I take to lawfully visit the United States as a tourist immediately after visiting on a B-1 visa? Would dual wielding daggers be a viable choice for a covert bodyguard? For a hashing function like MD5, how similar can two plaintext strings be and still generate the same hash? Using Newton's shell theorem to accelerate a spaceship Why doesn't sea level show seasonality? What prevents someone from claiming to be the murderer in order to get the real murderer off? Has anyone in space seen or photographed a simple laser pointer from Earth? What does (void *)1 mean Why does the U.S. tolerate foreign influence from Saudi Arabia and Israel on its domestic policies while not tolerating that from China or Russia? Modulus Operandi What's the point of having a RAID 1 configuration over incremental backups to a secondary drive? How to ask for a LinkedIn endorsement? Good resources for solving techniques (Metaheuristics, MILP, CP etc) How woul
Read more