Jump to content

Master-Remote Communication

Bricyn

By Bricyn
in TCAdmin Version 2

 Share

Recommended Posts

Bricyn Junior Member

Bricyn

Posted
Posted

Does anyone know how secure the communication between the master server and remove servers is? I've been glancing through the tcadmin2 install and I haven't been able to identify anything that would point to it being secured.

 

If its not secured, how has everyone guaranteed the security of their systems? I've considered using an SSL tunnel but I'm concerned that it won't be up to handling the amount of data that will be transferred. My master server is through a different provider than my slave servers will be so I can't just run a private network between them on my hosts backbone.

Link to comment
Share on other sites
PCGamersportal Senior Member

PCGamersportal

Posted
Posted (edited)

There are a few things that make it secure. Some are your responsibility and some are built into Tcadmin.

 

If you use secure mode, then your SSL is part of this encryption. Secondly, the SQL database where the master server resides and that your remote speaks to should be secured, if your not sure how to secure your SQL database to prevent injection or brute entry etc., you should follow your readme file for the SQL software you choose or I recommend hiring a freelancer tech from either Odesk or another venue.

 

Security of any software is dependant on your physical servers setup and hardening process. If your not sure that the physical server is secure, start by using microsofts security analysis software which is free and follow through the recommendations or better still hit Odesk and get a tech.

 

Tcadmin is very secure even not using SSL, I have not personally seen on the forums anyone having an intrusion issue. It is entirely dependant on your administration of the master physical server.

 

I will add that hijacking a transmission would be hindered by SSL, however SQL databases will ban intruders IP based on errors received when trying to connect, ensure your database is setup correctly and it will be a layer of protection as well.

 

I am no expert but with the right security in place like SSL and proper server hardening it is safe and you don't have anything to be worried about. I don't think any GSP here would tell you that they worry it is insecure.

 

Security is shared between the app and our own due diligence when securing our physical machines for public use.

Edited by PCGamersportal
Add something not mentioned
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Who's Online   0 Members, 0 Anonymous, 33 Guests (See full list)

    • There are no registered users currently online
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue. Terms of Use

 Accept Cookies  Reject Cookies