[cgl_discussion] Security for internal messaging between diff erent nodes of the cl uster?

Eric.Chacron at alcatel.fr Eric.Chacron at alcatel.fr
Wed Feb 19 08:18:56 PST 2003


I think what you're discussing is not a clustering specific problem but a
network related one.
For me the difference is important as even with a single node configuration
you may have network accesses and
so network related security issues.

>yes. the concern is that the non-trusted software can bring down the
service. but also, that it can be used to >sneak on info inside the cluster
or even to corrupt client's info (for example to corrupt the billing for a
>client or else).

OK, a non trusted software can corrupt the node where it is running
whatever this node is
in a cluster or not. The questions are 1) to avoid such a non trusted
software to be on this node
and 2) to confine / limit the damage on the node resources.

Then the clustering specific security issues can be seen as dependant on
the 2 former questions.
So resolving 1, and 2 will resolve most of  clustering security issues.

I think the main point is to identify the security issues specific to
cluster, for instance
is it possible to plug on the LAN a new hardware and takes control as a
cluster node...





"Makan Pourzandi (LMC)" <Makan.Pourzandi at ericsson.ca>@lists.osdl.org on
02/19/2003 04:42:36 PM

Sent by:    cgl_discussion-admin at lists.osdl.org


To:    "'Pradeep Kathail'" <pkathail at cisco.com>, "Makan Pourzandi (LMC)"
        <Makan.Pourzandi at lmc.ericsson.se>, "Makan Pourzandi (LMC)"
       <Makan.Pourzandi at lmc.ericsson.se>, "'Mika Kukkonen'" <mika at osdl.org>
cc:    "Cgl_Discussion (E-mail)" <cgl_discussion at osdl.org>
Subject:    RE: [cgl_discussion] Security for internal messaging between
       diff  erent nodes of the cl uster?




> -----Original Message-----
> From: Pradeep Kathail [mailto:pkathail at cisco.com]
> Sent: Saturday, February 15, 2003 7:37 PM
> To: Makan Pourzandi (LMC); Makan Pourzandi (LMC); 'Mika Kukkonen'
> Cc: Cgl_Discussion (E-mail)
> Subject: RE: [cgl_discussion] Security for internal messaging between
> diff erent nodes of the cl uster?
>
.........................
> I am trying to understand the communication model between these nodes.
>
> 1. Are the nodes running not-trusted software allowed to talk to
>    any node in the cluster (intermediate nodes) in full/ half
>    duplex mode?

yes. they can communicate with other nodes inside the cluster.

> 2. Are the intermediate nodes allowed to talk to any node in
> the cluster
>    in full/ half duplex mode?

sorry, I don't see what intermediate nodes are. Are they different from
other nodes in the cluster?

> 3. If answer to above two questions is NO, then why non-trusted nodes
>    are part of cluster.
> 4. If answer is yes, Can non-trusted software bring down the service
>    by overloading or corrupting the intermediate nodes?
>

yes. the concern is that the non-trusted software can bring down the
service. but also, that it can be used to sneak on info inside the cluster
or even to corrupt client's info (for example to corrupt the billing for a
client or else).

makan

>
_______________________________________________
cgl_discussion mailing list
cgl_discussion at lists.osdl.org
 http://lists.osdl.org/mailman/listinfo/cgl_discussion







More information about the cgl_discussion mailing list