You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
When installing the first plugin for steampipe on macOS (steampipe plugin install steampipe), macOS displays a security prompt asking for permission to allow incoming connections. Your documentation does not describe why steampipe needs to support incoming connections, so as a user it's hard to judge whether or not this tool is safe to install.
Steampipe version (steampipe -v)
Example: v0.16.4
To reproduce
Steps to reproduce the behavior (please include relevant code and/or commands).
If you have previously installed the binary on macOS, open Security & Privacy -> Firewall -> Firewall Options, then remove steampipe. Uninstall steampipe.
Install steampipe using brew.
Install the first plugin using steampipe plugin install steampipe
Observe that macOS prompts for a firewall exception.
Inspect the documentation on the downloads page for a reason why this exception is needed.
Observe that there is no such documentation.
Expected behavior
A clear and concise description of what you expected to happen.
If steampipe requires incoming connections, there should be adequate documentation explaining why an exception should be granted. Alternatively, explain to folks that they can configure their Firewall to block incoming connections.
Additional context
Add any other context about the problem here.
The tool works fine when the firewall is configured to block incoming connections.
The text was updated successfully, but these errors were encountered:
Steampipe doesn't have any incoming connection to itself from outside. Perhaps it's because we're opening ports for Postgres to listen (9193) and the dashboard to listen (9194)?
Thanks for reporting this @dzqv . We have pushed a fix - initialising Steampipe will no longer require a firewall exception
When creating the Steampipe database, the initialisation code calls a function to find a free port to use during the Db init. It does this by opening (then immediately closing) a network listener and then using the port of this listener. Previously the listener was being opened without specifying an address, so was listening on all addresses, causing the firewall warning.
This has been changed to only listen on localhost.
Describe the bug
When installing the first plugin for
steampipe
on macOS (steampipe plugin install steampipe
), macOS displays a security prompt asking for permission to allow incoming connections. Your documentation does not describe why steampipe needs to support incoming connections, so as a user it's hard to judge whether or not this tool is safe to install.Steampipe version (
steampipe -v
)Example: v0.16.4
To reproduce
Steps to reproduce the behavior (please include relevant code and/or commands).
steampipe
. Uninstall steampipe.steampipe plugin install steampipe
Expected behavior
A clear and concise description of what you expected to happen.
If
steampipe
requires incoming connections, there should be adequate documentation explaining why an exception should be granted. Alternatively, explain to folks that they can configure their Firewall to block incoming connections.Additional context
Add any other context about the problem here.
The tool works fine when the firewall is configured to block incoming connections.
The text was updated successfully, but these errors were encountered: