<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">Not sure if this will make it to 0.8,
but I recently added HTTP authentication to all robust-bound
connectors of internal grid services. HTTP authentication is not
hard security, but it makes it much harder for unauthorized
accesses to the grid services. (I, too, run a grid with simulators
in different data centers.)<br>
<br>
On 6/2/2014 4:16 PM, David Saunders wrote:<br>
</div>
<blockquote
cite="mid:CAOjZz+=QGU8Bf9pcOx5PJFzzCRm_7YN6bUBstxfcdArdO3ntNA@mail.gmail.com"
type="cite">
<div dir="ltr">GRid Security?
<div><br>
</div>
<div>Well there is a lacking of it. I been working on a ways to
prevent grids/Simulators to connect to our network. Its built
around allowing sims to authenticate with a configuration
server that will open the door for them to connect to the grid
services. But I not found a list of ports that need to open
for clients to use, and been testing a list simulator ports
to splite the services from the client to a public set of
ports and the simulator a set of private port that can be open
when they connect. </div>
<div><br>
</div>
<div> This would be easy if we did not allow trusted remote
simulators to connect.</div>
<div><br>
</div>
<div>When I asked about security lasst I was given you keep the
ports a secret and only give them out to people you trust. </div>
<div><br>
</div>
<div>A locked door is moor sure the a unlocked door behind a
bush.</div>
<div><br>
</div>
<div>David.</div>
</div>
<div class="gmail_extra"><br>
<br>
<div class="gmail_quote">On Sun, Jun 1, 2014 at 10:16 AM, Shaun
T. Erickson <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:ste@smxy.org" target="_blank">ste@smxy.org</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">A good
firewall config will handle much of it.<span class="HOEnZb"><font
color="#888888"><br>
<br>
-ste</font></span>
<div class="im HOEnZb"><br>
<br>
On 6/1/14, 6:29 AM, Luisillo Contepomi wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
I dont know if exist or not this list but I think it
would be very interesting.<br>
OpenSimulator is a "Alpha" declarated by developers but
I think that<br>
the project has enough maturity to start thinking
seriously about<br>
security.<br>
<br>
</blockquote>
<br>
</div>
<div class="HOEnZb">
<div class="h5">
_______________________________________________<br>
Opensim-users mailing list<br>
<a moz-do-not-send="true"
href="mailto:Opensim-users@opensimulator.org"
target="_blank">Opensim-users@opensimulator.org</a><br>
<a moz-do-not-send="true"
href="http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users"
target="_blank">http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users</a><br>
</div>
</div>
</blockquote>
</div>
<br>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Opensim-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Opensim-users@opensimulator.org">Opensim-users@opensimulator.org</a>
<a class="moz-txt-link-freetext" href="http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users">http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users</a>
</pre>
</blockquote>
<br>
</body>
</html>