Master-Remote Communication

[Bricyn]

Does anyone know how secure the communication between the master server and remove servers is? I've been glancing through the tcadmin2 install and I haven't been able to identify anything that would point to it being secured.

 

If its not secured, how has everyone guaranteed the security of their systems? I've considered using an SSL tunnel but I'm concerned that it won't be up to handling the amount of data that will be transferred. My master server is through a different provider than my slave servers will be so I can't just run a private network between them on my hosts backbone.

[PCGamersportal]

There are a few things that make it secure. Some are your responsibility and some are built into Tcadmin.

 

If you use secure mode, then your SSL is part of this encryption. Secondly, the SQL database where the master server resides and that your remote speaks to should be secured, if your not sure how to secure your SQL database to prevent injection or brute entry etc., you should follow your readme file for the SQL software you choose or I recommend hiring a freelancer tech from either Odesk or another venue.

 

Security of any software is dependant on your physical servers setup and hardening process. If your not sure that the physical server is secure, start by using microsofts security analysis software which is free and follow through the recommendations or better still hit Odesk and get a tech.

 

Tcadmin is very secure even not using SSL, I have not personally seen on the forums anyone having an intrusion issue. It is entirely dependant on your administration of the master physical server.

 

I will add that hijacking a transmission would be hindered by SSL, however SQL databases will ban intruders IP based on errors received when trying to connect, ensure your database is setup correctly and it will be a layer of protection as well.

 

I am no expert but with the right security in place like SSL and proper server hardening it is safe and you don't have anything to be worried about. I don't think any GSP here would tell you that they worry it is insecure.

 

Security is shared between the app and our own due diligence when securing our physical machines for public use.

Edited June 7, 2014 by PCGamersportal
Add something not mentioned