subject:"Reminder\: don't listen on public addresses"

Re: Reminder: don't listen on public addresses

2017-02-26 Thread Vladimir Yudovin

I would add: use SSL and internode certificate authentication (password for CQL goes withou saying, of course). Best regards, Vladimir Yudovin, Winguzone - Cloud Cassandra Hosting On Fri, 20 Jan 2017 14:14:56 -0500 Richard L. Burton III wrote I'm oft

Re: Reminder: don't listen on public addresses

2017-01-20 Thread Richard L. Burton III

I'm often asked "How should I setup my security for Cassandra?" My answer is simple "Do not expose them to the outside world! If using AWS, setup your VPC and block any IP address that's not in your range and restrict what machines can access them." On Fri, Jan 20, 2017 at 12:29 PM, Jonathan Elli

Reminder: don't listen on public addresses

2017-01-20 Thread Jonathan Ellis

MongoDB has been in the news for hackers deleting unsecured databases and demanding money to return the data. Now copycats are starting to look at other targets too like the thousands of unsecured Cassandra databases. Preventing this is very simple: don't allow Cassandra to listen on public inter

Re: Reminder: don't listen on public addresses

Re: Reminder: don't listen on public addresses

Reminder: don't listen on public addresses

3 matches

Site Navigation

Mail list logo

Footer information