Hacker News new | past | comments | ask | show | jobs | submit login

I’ve been a security professional for 20+ years and I agree with them. You’re complaining about an attack surface that would be more easily explored in a bunch of different ways.

I’m not sure why you bring this up on every post vaguely related to pi-hole.

I bring it up just so that people are aware and can make their own decision about risk/benefit when choosing to deploy the software. There is obviously room for opinion on the matter and I specifically am not claiming that the project is bad or should be avoided, just that people using it in a default config out of the box know the risks that that presents.

The “be advised” is just that.

It’s not a big deal, and I think I only mentioned it once before.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact