<div dir="ltr">If you run a grid across multiple data centers and you don't want to expose the services externally you could have the regions access the services via a VPN. I believe LL does this with SL, or they did at one time when they first started using multiple data centers.<br>
</div><div class="gmail_extra"><br><br><div class="gmail_quote">On Mon, Jun 2, 2014 at 4:24 PM, Diva Canto <span dir="ltr"><<a href="mailto:diva@metaverseink.com" target="_blank">diva@metaverseink.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000">
<div>Not sure if this will make it to 0.8,
but I recently added HTTP authentication to all robust-bound
connectors of internal grid services. HTTP authentication is not
hard security, but it makes it much harder for unauthorized
accesses to the grid services. (I, too, run a grid with simulators
in different data centers.)<div><div class="h5"><br>
<br>
On 6/2/2014 4:16 PM, David Saunders wrote:<br>
</div></div></div><div><div class="h5">
<blockquote type="cite">
<div dir="ltr">GRid Security?
<div><br>
</div>
<div>Well there is a lacking of it. I been working on a ways to
prevent grids/Simulators to connect to our network. Its built
around allowing sims to authenticate with a configuration
server that will open the door for them to connect to the grid
services. But I not found a list of ports that need to open
for clients to use, and been testing a list simulator ports
to splite the services from the client to a public set of
ports and the simulator a set of private port that can be open
when they connect. </div>
<div><br>
</div>
<div> This would be easy if we did not allow trusted remote
simulators to connect.</div>
<div><br>
</div>
<div>When I asked about security lasst I was given you keep the
ports a secret and only give them out to people you trust. </div>
<div><br>
</div>
<div>A locked door is moor sure the a unlocked door behind a
bush.</div>
<div><br>
</div>
<div>David.</div>
</div>
<div class="gmail_extra"><br>
<br>
<div class="gmail_quote">On Sun, Jun 1, 2014 at 10:16 AM, Shaun
T. Erickson <span dir="ltr"><<a href="mailto:ste@smxy.org" target="_blank">ste@smxy.org</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">A good
firewall config will handle much of it.<span><font color="#888888"><br>
<br>
-ste</font></span>
<div><br>
<br>
On 6/1/14, 6:29 AM, Luisillo Contepomi wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
I dont know if exist or not this list but I think it
would be very interesting.<br>
OpenSimulator is a "Alpha" declarated by developers but
I think that<br>
the project has enough maturity to start thinking
seriously about<br>
security.<br>
<br>
</blockquote>
<br>
</div>
<div>
<div>
_______________________________________________<br>
Opensim-users mailing list<br>
<a href="mailto:Opensim-users@opensimulator.org" target="_blank">Opensim-users@opensimulator.org</a><br>
<a href="http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users" target="_blank">http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users</a><br>
</div>
</div>
</blockquote>
</div>
<br>
</div>
<br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Opensim-users mailing list
<a href="mailto:Opensim-users@opensimulator.org" target="_blank">Opensim-users@opensimulator.org</a>
<a href="http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users" target="_blank">http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users</a>
</pre>
</blockquote>
<br>
</div></div></div>
<br>_______________________________________________<br>
Opensim-users mailing list<br>
<a href="mailto:Opensim-users@opensimulator.org">Opensim-users@opensimulator.org</a><br>
<a href="http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users" target="_blank">http://opensimulator.org/cgi-bin/mailman/listinfo/opensim-users</a><br>
<br></blockquote></div><br></div>