#30 rxstack security enhancement

closed
Mark Hessling
rxstack (1)
5
2014-06-08
2013-07-02
Bruce
No

Until the allow/deny files can be implemented, I'd like to request a new command line argument, -l, that would cause rxstack to reject any connection requests that are not from the localhost, 127.0.0.1. If connections to other machines are required, the connections could be implemented via ssh tunnels, which would supply better security and encryption than the allow/deny files.

Discussion

  • Mark Hessling
    Mark Hessling
    2013-07-03

    I would prefer a switch that allowed connections from anywhere to override the default of localhost. Maybe -w for world.
    I like the idea of using ssh tunnels.

    I'm also looking at implementing a limited HTTPD protocol to allow an http client like Javascript using XMLHttpRequest to interface to rxstack.

     
  • Mark Hessling
    Mark Hessling
    2013-07-03

    • status: open --> accepted
    • assigned_to: Mark Hessling
    • Group: Next Release (example) -->
     
  • Mark Hessling
    Mark Hessling
    2014-06-08

    • status: accepted --> closed
     
  • Mark Hessling
    Mark Hessling
    2014-06-08

    Added -w and --world swicthes to rxstack.
    rxstack now also has a WebSocket interface; currently undocumented.

    Available in just released v3.8