[Opensim-users] about OpenSim GRID security.

Dahlia Trimble dahliatrimble at gmail.com
Tue Jun 3 04:31:22 UTC 2014 

If you run a grid across multiple data centers and you don't want to expose
the services externally you could have the regions access the services via
a VPN. I believe LL does this with SL, or they did at one time when they
first started using multiple data centers.


On Mon, Jun 2, 2014 at 4:24 PM, Diva Canto <diva at metaverseink.com> wrote:

>  Not sure if this will make it to 0.8, but I recently added HTTP
> authentication to all robust-bound connectors of internal grid services.
> HTTP authentication is not hard security, but it makes it much harder for
> unauthorized accesses to the grid services. (I, too, run a grid with
> simulators in different data centers.)
>
>
> On 6/2/2014 4:16 PM, David Saunders wrote:
>
> GRid Security?
>
>  Well there is a lacking of  it. I been working on a ways to prevent
> grids/Simulators to connect to our network.  Its built around allowing sims
> to authenticate with a configuration server that will open the door for
> them to connect to the grid services.  But I not found a list of ports that
> need to open for clients to use,  and been testing a list simulator ports
> to splite the services from the client to a public set of ports and the
> simulator a set of private port that can be open when they connect.
>
>   This would be easy if we did not allow trusted remote simulators to
> connect.
>
>  When I asked about security lasst I was given you keep the ports a
> secret and only give them out to people you trust.
>
>  A locked door is moor sure the a unlocked door behind a bush.
>
>  David.
>
>
> On Sun, Jun 1, 2014 at 10:16 AM, Shaun T. Erickson <ste at smxy.org> wrote:
>
>> A good firewall config will handle much of it.
>>
>> -ste
>>
>>
>> On 6/1/14, 6:29 AM, Luisillo Contepomi wrote:
>>
>>> I dont know if exist or not this list but I think it would be very
>>> interesting.
>>> OpenSimulator is a "Alpha" declarated by developers but  I think that
>>> the project has enough maturity to start thinking seriously about
>>> security.
>>>
>>>
>>   _______________________________________________
>> Opensim-users mailing list
>> Opensim-users at opensimulator.org
>> http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users
>>
>
>
>
> _______________________________________________
> Opensim-users mailing listOpensim-users at opensimulator.orghttp://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users
>
>
>
> _______________________________________________
> Opensim-users mailing list
> Opensim-users at opensimulator.org
> http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://opensimulator.org/pipermail/opensim-users/attachments/20140602/a142e6de/attachment.html>

More information about the Opensim-users mailing list