diff --git a/data/auth.sqlite b/data/auth.sqlite
index 323d51d..ab9c3a4 100644
Binary files a/data/auth.sqlite and b/data/auth.sqlite differ
diff --git a/markbase-core/src/ssh_server/server.rs b/markbase-core/src/ssh_server/server.rs
index 2a169a9..4daa973 100644
--- a/markbase-core/src/ssh_server/server.rs
+++ b/markbase-core/src/ssh_server/server.rs
@@ -34,7 +34,7 @@ impl Default for SshServerConfig {
     fn default() -> Self {
         Self {
             port: 2024,
-            bind_address: "127.0.0.1".to_string(),
+            bind_address: "0.0.0.0".to_string(), // ⭐⭐⭐⭐⭐ Phase 8.3: Allow Docker container access
             security_config: SshSecurityConfig::enterprise_default(),
             pg_conn: None,
             upload_hook_config: crate::config::UploadHookSection::default(),
@@ -48,7 +48,7 @@ impl SshServerConfig {
         let config = SshSecurityConfig::load_from_file(path)?;
         Ok(Self {
             port: 2024,
-            bind_address: "127.0.0.1".to_string(),
+            bind_address: "0.0.0.0".to_string(), // ⭐⭐⭐⭐⭐ Phase 8.3: Allow Docker container access
             security_config: config,
             pg_conn: None,
             upload_hook_config: crate::config::UploadHookSection::default(),
@@ -701,7 +701,7 @@ fn extract_username_from_auth_request(
 pub fn run_ssh_server(port: Option<u16>, pg_conn: Option<&str>) -> Result<()> {
     let config = SshServerConfig {
         port: port.unwrap_or(2024),
-        bind_address: "127.0.0.1".to_string(),
+        bind_address: "0.0.0.0".to_string(), // ⭐⭐⭐⭐⭐ Phase 8.3: Allow Docker container access
         security_config: SshSecurityConfig::enterprise_default(),
         pg_conn: pg_conn.map(|s| s.to_string()),
         upload_hook_config: crate::config::UploadHookSection::default(),