... And redis and hadoop. More than a few of the newer nosql offerings
do not bake security right into the cake.
@siculars on twitter
http://siculars.posterous.com
Sent from my iPhone
On Jan 12, 2011, at 13:17, Gary Smith <[email protected]> wrote:
Hi,
Newbie question. I am trying to find documentation about Riak
security.
I have seen
http://wiki.basho.com/Network-Security-and-Firewall-Configurations.html
,
but I could not find much on access control.
Is it possible to secure access to Riak nodes? Does it offer
something
similar to http://srp.stanford.edu/ (i.e. remote login)?
I read somewhere that Riak does not use encryption for exchange
between
nodes. Is this (still) correct? What about communication with users
applications?
If the answer to the above question is no, then how can one secure a
Riak system properly?
Put an apache (or whatever) server in front and proxy the requests
accordingly and setup the security through the underlying web service.
You -> [ apache -> riak ] (where [] is the box).
Or
You -> apache -> riak (where riak only allows requests from the
apache server via the firewall on the riak server -- such as iptables)
The same problem exists in technologies like memcached.
_______________________________________________
riak-users mailing list
[email protected]
http://lists.basho.com/mailman/listinfo/riak-users_lists.basho.com
_______________________________________________
riak-users mailing list
[email protected]
http://lists.basho.com/mailman/listinfo/riak-users_lists.basho.com
