How to secure rabbirmq client access
39 views
Skip to first unread message
laurent vuong
Feb 10, 2015, 3:20:41 AM2/10/15
to rabbitm...@googlegroups.com
Hi,
I wonder how to secure Rabbitmq server access : How to configure rabbitmq to send the Secure AMQP packet to clients for authenticate ?
regards
laurent
Michael Klishin
Feb 10, 2015, 3:22:15 AM2/10/15
to rabbitm...@googlegroups.com, laurent vuong
On 10 February 2015 at 11:20:42, laurent vuong (lauren...@gmail.com) wrote:
> I wonder how to secure Rabbitmq server access : How to configure
> rabbitmq to send the Secure AMQP packet to clients for authenticate
> ?
I'm not sure what "Secure AMQP packets " are but to secure credentials on the wire, you have
> I wonder how to secure Rabbitmq server access : How to configure
> rabbitmq to send the Secure AMQP packet to clients for authenticate
> ?
to encrypt traffic, so use TLS: http://www.rabbitmq.com/ssl.html.
--
MK
Staff Software Engineer, Pivotal/RabbitMQ
laurent vuong
Feb 10, 2015, 4:08:47 AM2/10/15
to rabbitm...@googlegroups.com
Hi Mickael,
by Secure, I refer to the Connection.Secure AMQP packet described in the AMQP specifications
Connection.Secure
Connection.Secure-ok
Laurent
Michael Klishin
Feb 10, 2015, 4:14:45 AM2/10/15
to rabbitm...@googlegroups.com, laurent vuong
On 10 February 2015 at 12:08:48, laurent vuong (lauren...@gmail.com) wrote:
> by Secure, I refer to the Connection.Secure AMQP packet described
> in the AMQP specifications
> Connection.Secure
> Connection.Secure-ok
Simply use authentication (which is not optional in AMQP 0-9-1, unlike some other protocols).
> by Secure, I refer to the Connection.Secure AMQP packet described
> in the AMQP specifications
> Connection.Secure
> Connection.Secure-ok
There are several mechanisms available:
https://www.rabbitmq.com/authentication.html
Simon MacMullen
Feb 10, 2015, 5:25:38 AM2/10/15
to Michael Klishin, rabbitm...@googlegroups.com, laurent vuong
On 10/02/2015 09:14, Michael Klishin wrote:
> On 10 February 2015 at 12:08:48, laurent vuong (lauren...@gmail.com) wrote:
>> by Secure, I refer to the Connection.Secure AMQP packet described
>> in the AMQP specifications
>> Connection.Secure
>> Connection.Secure-ok
>
> Simply use authentication (which is not optional in AMQP 0-9-1, unlike some other protocols).
Just for additional background here: the connection.secure{-ok} methods
> On 10 February 2015 at 12:08:48, laurent vuong (lauren...@gmail.com) wrote:
>> by Secure, I refer to the Connection.Secure AMQP packet described
>> in the AMQP specifications
>> Connection.Secure
>> Connection.Secure-ok
>
> Simply use authentication (which is not optional in AMQP 0-9-1, unlike some other protocols).
are only used in multi-phase challenge-response SASL mechanisms.
Single-phase ones send their authentication information in
connection.start-ok.
In practice that means connection.secure{-ok} are almost never seen in
the wild since PLAIN, AMQPLAIN and EXTERNAL don't use them. That doesn't
mean your connection is not secure!
Cheers, Simon
Reply all
Reply to author
Forward
0 new messages