[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[McIDAS #TXX-128658]: security mcidas

This archive contains answers to questions sent to Unidata support through mid-2025. Note that the archive is no longer being updated. We provide the archive for reference; many of the answers presented here remain technically correct, even if somewhat outdated. For the most up-to-date information on the use of NSF Unidata software and data services, please consult the Software Documentation first.

  • Subject: [McIDAS #TXX-128658]: security mcidas
  • Date: Thu, 31 Jan 2008 11:46:00 -0700
Hi Tyn,

re:
> we're in the process of deploying mcidas for public access.

I assume that you mean that you are in the process of opening up access
to an ADDE server for public access.  True?

> I'm no
> expert, but can you send us some information that explains potential
> security issues?

There are no known security breaches related to access to a remote ADDE
server ** as long as the server is NOT run as 'root' **.  The good news
about how the ADDE server works is that connections will "fall on the floor"
(die/drop) if a request is received that is not valid.

Other than the above, I am not sure what else you might be looking for, but
I am willing to respond to any specific questions you might have.


Cheers,

Tom
****************************************************************************
Unidata User Support                                    UCAR Unidata Program
(303) 497-8642                                                 P.O. Box 3000
address@hidden                                   Boulder, CO 80307
----------------------------------------------------------------------------
Unidata HomePage                       http://www.unidata.ucar.edu
****************************************************************************


Ticket Details
===================
Ticket ID: TXX-128658
Department: Support McIDAS
Priority: Normal
Status: Closed