You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@trafficserver.apache.org by "Arno Toell (JIRA)" <ji...@apache.org> on 2011/05/08 18:07:03 UTC
[jira] [Created] (TS-766) Authenticate access to cluster command
port
Authenticate access to cluster command port
-------------------------------------------
Key: TS-766
URL: https://issues.apache.org/jira/browse/TS-766
Project: Traffic Server
Issue Type: Improvement
Components: Clustering, Network
Affects Versions: 2.1.8
Reporter: Arno Toell
Similar to TS-765, the cluster RPC interface should not be reachable by everyone. Instead some kind of peer authentication should apply. When clustering is enabled, please authenticate and/or restrict access to the RPC interface in a way only trusted peers are allowed to control the server.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (TS-766) Authenticate access to cluster command
port
Posted by "Leif Hedstrom (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/TS-766?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Leif Hedstrom updated TS-766:
-----------------------------
Fix Version/s: 3.1
Moving this out to v3.1, it's a good suggestion, I just don't think anyone has the time to fix this for v3.0. If security is a concern, and you need clustering, the only suggestion I have is to do ACLs of some sort (e.g. iptables or other firewall rules, which ought to be easy to setup).
> Authenticate access to cluster command port
> -------------------------------------------
>
> Key: TS-766
> URL: https://issues.apache.org/jira/browse/TS-766
> Project: Traffic Server
> Issue Type: Improvement
> Components: Clustering, Network
> Affects Versions: 2.1.8
> Reporter: Arno Toell
> Labels: security
> Fix For: 3.1
>
>
> Similar to TS-765, the cluster RPC interface should not be reachable by everyone. Instead some kind of peer authentication should apply. When clustering is enabled, please authenticate and/or restrict access to the RPC interface in a way only trusted peers are allowed to control the server.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (TS-766) Authenticate access to cluster command
port
Posted by "Leif Hedstrom (Updated) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/TS-766?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Leif Hedstrom updated TS-766:
-----------------------------
Fix Version/s: (was: 3.1.2)
3.2.0
> Authenticate access to cluster command port
> -------------------------------------------
>
> Key: TS-766
> URL: https://issues.apache.org/jira/browse/TS-766
> Project: Traffic Server
> Issue Type: Improvement
> Components: Clustering, Network
> Affects Versions: 2.1.8
> Reporter: Arno Toell
> Labels: security
> Fix For: 3.2.0
>
>
> Similar to TS-765, the cluster RPC interface should not be reachable by everyone. Instead some kind of peer authentication should apply. When clustering is enabled, please authenticate and/or restrict access to the RPC interface in a way only trusted peers are allowed to control the server.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (TS-766) Authenticate access to cluster command
port
Posted by "Leif Hedstrom (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/TS-766?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Leif Hedstrom updated TS-766:
-----------------------------
Fix Version/s: (was: 3.3.1)
3.3.4
> Authenticate access to cluster command port
> -------------------------------------------
>
> Key: TS-766
> URL: https://issues.apache.org/jira/browse/TS-766
> Project: Traffic Server
> Issue Type: Improvement
> Components: Clustering, Network
> Affects Versions: 2.1.8
> Reporter: Arno Toell
> Labels: security
> Fix For: 3.3.4
>
>
> Similar to TS-765, the cluster RPC interface should not be reachable by everyone. Instead some kind of peer authentication should apply. When clustering is enabled, please authenticate and/or restrict access to the RPC interface in a way only trusted peers are allowed to control the server.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira