Dockge allows you to start/stop containers and edit your compose files from a handy ui.
Pros: if something goes wrong while you’re away, it would give you a tool to restart a service or make some changes if necessary.
Cons: exposing that much control to the outside world (even behind a log in) can potentially be catastrophic for your stack if someone gets in.
I wouldn’t trust anything like that to the open internet. It would be better to access the system over a VPN when you’re outside the network.
Use wireguard
I’m using tailscale (which I hear is just a wrapper for wireguard) and love it.
Should be fine I have never used it in a man. I think it would be difficult to use it in a man with all the blood and other stuff.
I use portainer behind tail scale. Easy management anywhere and no publicly available access.
Indeed, tailscale/wireguard/zerotier are excellent options to keep only the bare minimum (or even nothing!) exposed to the world.
I’ll take “big red flags” for $1000
I would much prefer to just ssh
Don’t
Also I find it easy to just write a docker compose.
Yeah. I just forward SSH with keys only on a nonstandard port + fail2ban. Plus you can access local only services with an SSH port forward.
That’s also why I don’t use cockpit. It looks cool, but opens up vulnerabilities for very little benefit.
I have no issue writing a compose file. Dockge offers a bit more than that with logs and buttons for common commands which makes it easier and quicker to manage than through SSH.
To each their own 🙂
