Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Safe review: port change and users , passwords, auth, ip whitelist need to set #15

Open
lgh06 opened this issue Jan 22, 2022 · 5 comments
Open

Safe review: port change and users , passwords, auth, ip whitelist need to set #15

lgh06 opened this issue Jan 22, 2022 · 5 comments

Comments

@lgh06
Copy link
Owner

lgh06 commented Jan 22, 2022

No description provided.

@lgh06 lgh06 changed the title MongoDB & Rabbit MQ port change and users , passwords, auth need to set MongoDB & Rabbit MQ Safe review: port change and users , passwords, auth need to set Jan 22, 2022
@lgh06 lgh06 changed the title MongoDB & Rabbit MQ Safe review: port change and users , passwords, auth need to set MongoDB & Rabbit MQ Safe review: port change and users , passwords, auth, ip whitelist need to set Jan 22, 2022
@lgh06
Copy link
Owner Author

lgh06 commented Jan 23, 2022

RabbitMQ auth: https://www.rabbitmq.com/access-control.html#default-state

@lgh06
Copy link
Owner Author

lgh06 commented Jan 23, 2022
edited
Loading

MongoDB auth : https://docs.mongodb.com/v5.0/security
https://docs.mongodb.com/drivers/node/v4.3/fundamentals/authentication/

@lgh06 lgh06 mentioned this issue Jan 27, 2022
Open
13 tasks
@lgh06
Copy link
Owner Author

lgh06 commented Jan 27, 2022

see also #16

@lgh06 lgh06 changed the title MongoDB & Rabbit MQ Safe review: port change and users , passwords, auth, ip whitelist need to set Safe review: port change and users , passwords, auth, ip whitelist need to set Jan 27, 2022
@lgh06
Copy link
Owner Author

lgh06 commented Jan 27, 2022
edited
Loading

default port change and firewall internal services ip, like worker / MongoDB / RabbitMQ. make next.js web public.
worker: need connect to MongoDB. (MongoDB whitelisted to worker.)
MongoDB: whitelisted to worker and Next.js
RabbitMQ: public to all workers and pptr. (pptr may not have public ip, so RabbitMQ need to be public to all)
Mext.js public to all.
pptr: TODO
pm2: TODO

@lgh06
Copy link
Owner Author

lgh06 commented Jan 28, 2022
edited
Loading

https://docs.mongodb.com/manual/core/security-hardening/

https://docs.mongodb.com/manual/administration/security-checklist/#std-label-checklist-auth

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@lgh06