Secure API
Dan Morphis
dan at milkcarton.com
Mon Nov 14 19:42:19 EST 2016
Put the NBI behind a reverse proxy that implements http auth (and ssl)
-dan
> On Nov 14, 2016, at 2:58 PM, Sergio <sergio.fernandez at electronicamartinez.com> wrote:
>
> One simple question!
>
> Is there any way to add authentication to the API explained here? https://github.com/zaidka/genieacs/wiki/API-Reference
>
> Normally, you run this software in a local controlled network. But I have two instances of GenieACS running in the wild web, and I am quite afraid of everyone seeing my CPEs. They are test instances, but we will need to deploy GenieACS in the near future, exposed to Internet.
>
> Last time, as I have to work with the server exposed, I had to patch a 0-day via redis with a firewall activated in the 6379 port. The patch is an easy one, but I think this is very dangerous, too. And maybe exists a simple solution
>
> Thank you!
>
> --
> Sergio Fernández
> sergio1993_1 at hotmail.com
> (+34) 687 016 994
>
> _______________________________________________
> Users mailing list
> Users at lists.genieacs.com
> http://lists.genieacs.com/mailman/listinfo/users
More information about the Users
mailing list