I have really simple question: is there anything against putting Icinga Web 2 (only GUI access for authenticated users) on the internet? I am not sure if this was ever considered, and how good the GUI is hardened against HTTP attacks.
Of course I should put some reverse proxy in front of it, but do you have any other ideas, how could I harden it? I don’t want to make IP white listing, VPN is also not an option for me.
I would like to give access to my Icinga Web 2 to some folks outside my organization (only authenticated), that’s it. If this is not a good idea at all, please let me know.