[Mulgara-dev] [Topaz-dev] Mulgara Security
William Mills
wmills_92105 at yahoo.com
Thu Mar 13 02:55:21 UTC 2008
Is Russell on the Mulgara-Dev list?
----- Original Message ----
From: Amit Kapoor <amitkapoor at mindspring.com>
To: topaz-dev at topazproject.org; mulgara-dev at mulgara.org
Sent: Wednesday, March 12, 2008 7:04:49 PM
Subject: Re: [Mulgara-dev] [Topaz-dev] Mulgara Security
On Wed, Mar 12, 2008 at 02:38:10PM -0700, Russell Uman wrote:
> Does mulgara currently have, or will it have in a future release, any way to
> restrict access with some kind of password auth?
>
> It strikes me that currently anyone who manages to get a shell on a machine that
> can connect to mulgara (mulgara server itself, any pubapp, *and* the backup
> server in our current implementation) can connect and run random itql queries
> with no restriction if they are familiar with mulgara.
>
> having come to this realization, i can make the current set up a little more
> secure by getting rid of the connection from backup server to mulgara, but it's
> still a little scary...
More appropriate for the mulgara mailing list.
regards
_______________________________________________
Mulgara-dev mailing list
Mulgara-dev at mulgara.org
http://mulgara.org/mailman/listinfo/mulgara-dev
More information about the Mulgara-dev
mailing list