secure/tls access for statistics-channels ?
PGNet Dev
pgnet.dev at gmail.com
Tue Oct 18 13:39:15 UTC 2022
>> can stats channel be config'd for (only) secure access?
>> does it use the 'tls' config, or other?
>
> Not at the moment.
ok
> Please note the statistics channel must not be exposed to any unauthorized access, so the most safe way is to expose it only on localhost anyway - and then TLS is just overhead.
yup
exposed in bind conf only on localhost+port,
config'd stunnel as frontend TLS terminator, with TLS cert authentication required,
added own-CA self-signed cert,
and works well enough
thx
More information about the bind-users
mailing list