[SCIDB-61] security: access to the internet from the proto-type system Created: 21/Aug/18 Updated: 23/Dec/22 Resolved: 23/Dec/22 |
|
| Status: | Done |
| Project: | Science Database |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Story | Priority: | Critical |
| Reporter: | Masayuki Tanaka | Assignee: | Masayuki Tanaka |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Epic Link: | security |
| Description |
|
No out-going packets are allowed from the proto-type system. Talk to the network security people at NAOJ to explore possibilities to (partly) expose the system to the internet. |
| Comments |
| Comment by Masayuki Tanaka [ 29/Aug/18 ] |
|
We discussed with the network admin. We can allow http/https connections to the internet from the proto-type system, but with a white list of IPs (i.e., we allow access to the listed websites, which will include repositories such as github). The next step is to make the white list. |
| Comment by Masayuki Tanaka [ 23/Dec/22 ] |
|
We can access external sites defined in the white list. The list is an evolving list and is not attached here. |