Security: privilege to access a queue
49 views
Skip to first unread message
Jason Judge
Nov 26, 2011, 7:38:39 PM11/26/11
to beansta...@googlegroups.com
I am looking for a general distributed queue system, for integrating some PHP apps on different servers, and came across beanstalk. I have not perused all the documentation yet, so apologies if this is a dumb question.
Does beanstalk incorporate any security, so that queues can only be accessed with an appropriate password or certificate? Or is this something that needs to be handled at the connection level in other ways, such as through a firewall?
I will have a shop on one server firing off details of transactions and payments to its local queue (this bit must be fast, as we don't want to hold the user up, or risk losing those details if the user closes their browser too quickly after completing a transaction). I have a second machine pulling those transaction details and pushing them into a CRM, in its own slow time. What I don't want to happen is for a machine-in-the-middle to mess with the queue - pushing or pulling its own stuff. I'm guessing a firewall to allow just those two machines to talk to each other through the queue port is the way to go?
-- Jason
Does beanstalk incorporate any security, so that queues can only be accessed with an appropriate password or certificate? Or is this something that needs to be handled at the connection level in other ways, such as through a firewall?
I will have a shop on one server firing off details of transactions and payments to its local queue (this bit must be fast, as we don't want to hold the user up, or risk losing those details if the user closes their browser too quickly after completing a transaction). I have a second machine pulling those transaction details and pushing them into a CRM, in its own slow time. What I don't want to happen is for a machine-in-the-middle to mess with the queue - pushing or pulling its own stuff. I'm guessing a firewall to allow just those two machines to talk to each other through the queue port is the way to go?
-- Jason
Chad Kouse
Nov 27, 2011, 1:36:28 AM11/27/11
to beansta...@googlegroups.com
I'm pretty sure beanstalkd does not concern itself with security so you are correct, using iptables or some other firewall rule will be your best bet here.
--chad
--
You received this message because you are subscribed to the Google Groups "beanstalk-talk" group.
To view this discussion on the web visit https://groups.google.com/d/msg/beanstalk-talk/-/TVV_VWiUFCAJ.
To post to this group, send email to beansta...@googlegroups.com.
To unsubscribe from this group, send email to beanstalk-tal...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/beanstalk-talk?hl=en.
Jason Judge
Nov 27, 2011, 4:16:59 PM11/27/11
to beanstalk-talk
I thought it looked that way. Thanks.
Reply all
Reply to author
Forward
0 new messages