JPPF, java, parallel computing, distributed computing, grid computing, parallel, distributed, cluster, grid, cloud, open source, android, .net
JPPF

The open source
grid computing
solution

 Home   About   Features   Download   Documentation   On Github   Forums 
November 18, 2019, 07:22:38 AM *
Welcome,
Please login or register.

Login with username, password and session length
Advanced search  
News: New users, please read this message. Thank you!
  Home Help Search Login Register  
Pages: [1]   Go Down

Author Topic: Admin Console Security  (Read 2108 times)

codemonkey

  • JPPF Council Member
  • *****
  • Posts: 138
Admin Console Security
« on: January 13, 2012, 03:59:57 PM »

Hello everyone!

I was wondering if anyone knows how to restrict what users can see in the admin console, as anyone can download the admin console, fire it up, and tear down grids at will. This is a big security issue in my mind. There is no way that I can see how to audit this either.

What can be done on the host machine so that you don't even see grid instances show up in the admin console when accessed from another machine?

If anyone has some suggestions I'd really appreciate it!

Logged

lolo

  • Administrator
  • JPPF Council Member
  • *****
  • Posts: 2256
    • JPPF Web site
Re: Admin Console Security
« Reply #1 on: January 17, 2012, 08:04:53 AM »

Hello,

Unfortunately, as you have noticed, there is cuurently nothing for access control in the admin console.
I have registered a feature request for this: 3474710 - Access control for management and monitoring


Quote
What can be done on the host machine so that you don't even see grid instances show up in the admin console when accessed from another machine?

It seems this could be achieved with a firewall, by blocking incoming connections to the JMX port ("jppf.management.port" property) from remote machines.

Sincerely,
-Laurent
Logged

codemonkey

  • JPPF Council Member
  • *****
  • Posts: 138
Re: Admin Console Security
« Reply #2 on: January 26, 2012, 04:00:12 AM »

Hey Laurent, thank you very much and sorry for the late reply.

Thank you for registering the feature request!

By blocking the jppf.management.port with a firewall, how does that effect the remote jppf.client's within applications that need to communicate with the driver(s)?

Thanks again!






Logged

lolo

  • Administrator
  • JPPF Council Member
  • *****
  • Posts: 2256
    • JPPF Web site
Re: Admin Console Security
« Reply #3 on: January 26, 2012, 06:46:34 AM »

Hello,

Blocking the management port will not impact the remote clients' ability to submit jobs and receive their results.
There will only be an impact on your client applications if they make programmatic use of the JMX-based APIs to manage/monitor the grid or the jobs (or for any other purpose).
Furthermore, your local administration console (not affected by the firewall) will still be able to monitor and manage the jobs submitted by these remote clients.

I hope this answers your question.

Sincerely,
-Laurent
Logged
Pages: [1]   Go Up
 
JPPF Powered by SMF 2.0 RC5 | SMF © 2006–2011, Simple Machines LLC Get JPPF at SourceForge.net. Fast, secure and Free Open Source software downloads