[Bro] bro cluster security
Luis Miguel Silva
luismiguelferreirasilva at gmail.com
Fri Jan 30 04:33:59 PST 2015
I guess I could, though that wouldn't protect from attacks coming from
Anyway, I'm just trying to figure out what level of security is there
On Fri, Jan 30, 2015 at 5:17 AM, Dave Crawford <bro at pingtrip.com> wrote:
> Can you mitigate the risk by running a local firewall (e.g. IPTables on
> Linux, or PF on FreeBSD) on each component with explicit rules pairing
> manger<->workers<->proxies on the appropriate ports?
> On Jan 30, 2015, at 2:40 AM, Luis Miguel Silva <
> luismiguelferreirasilva at gmail.com> wrote:
> As I was looking at the bro cluster documentation
> <https://www.bro.org/sphinx/cluster/index.html>, I noticed there wasn't
> any information / configuration parameters to authenticate / authorize the
> communication between the manager, worker and proxy components.
> How do we protect against malicious processes from impersonating real
> Thank you,
> Bro mailing list
> bro at bro-ids.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Bro