[Babase] Re: Ranker security problems

Karl O. Pinc kop at meme.com
Sat Aug 25 13:14:38 EDT 2007


On 08/25/2007 12:15:39 AM, Jun Yang wrote:
> I've fixed the problem of connecting ranker from biology.duke.edu
> machines. The Wiki instructions have been updated too. Basically, when
> connecting to directly to papio (instead of papio-vpn) from
> biology.duke.edu machine, you need to check the box "Use SSL?"

Thanks.

> I also noticed that the instructions on ranker Wiki says that when
> host is papio, use unix login and password---is that how it's set up?

Yes.

> I thought you need to use database login and password in both cases,

Nope.  The idea is that the Unix login security is stronger, with
Duke-wide logging etc.  Stronger secuity for direct-from-the-outside-
world-into-the-db access.  So, it goes through PAM, which goes
through kerberos and has rate limiting and is overall mointored
by security at Duke.


Karl <kop at meme.com>
Free Software:  "You don't pay back, you pay forward."
                  -- Robert A. Heinlein



More information about the Babase mailing list