[developers] Security Problem in Connecting Distributed Routers

[Kazutoshi Ono]

Hi, We are testing to connect two companies with swiftmq routers just like figure1 in http://www.swiftmq.com/index.html . Let's say router-a is installed in company-a and router-b is installed in company-b. 1. Create a connector in router-a to connect to router-b. 2. Create new entity "swiftmqmgmt@router-b" in router-a/authentication/groups/ admin/queuegrants. Then, router-b is displayed in CLI/swiftmq explorer in company-a and it becomes controllable from company-a, say that the administrator in company-a can add/ delete users of router-b in company-b. As adding "swiftmqmgmt@router-b" entity is operated in company-a, it can be a security problem from company-b standpoint. 1. We tried to avoid this problem by configuring host access list of router-b. -> We can reduce the security risks, but we still need to add router.company-a.com to host access list. It seems it means router-b allows router-a not only to connect to but also to controll router-b. 2. We looked for access controll capability of management swiftlet. -> We counldn't find that. Is there any way to allow a router only to connect to the router ? Any comment would be very helpful. Thanks in advance, -- Kazutoshi ------------------------------------------------------ SwiftMQ developers mailing list * http://www.swiftmq.com To unsubscribe from this list, send an eMail to [EMAIL PROTECTED] and write in the body of your message: UNSUBSCRIBE developers <your-email-address> Archive: http://www.mail-archive.com/developers@mail.iit.de/