Dear Fedora users :)
I'd like to ask what's your opinion on a following issue.
We currently have a xacml policy defined which restricts the access (ip
regex) to the api-m only to the trusted hosts (which originally were the
hosts where the frontend app was running).
Now we distribute and client application to the users which is able to
upload files to fedora. So it uses api-m and we are considering the
possibility to open the api-m 'worldwide', yet having concerns about it.
Are you using such policies as well (how do you define them?) or do you
only rely on the soap login? Do you additionally use some filters on the
tomcat or firewall?
Thanks!
Rasta
------------------------------------------------------------------------------
LogMeIn Rescue: Anywhere, Anytime Remote support for IT. Free Trial
Remotely access PCs and mobile devices and provide instant support
Improve your efficiency, and focus on delivering more value-add services
Discover what IT Professionals Know. Rescue delivers
http://p.sf.net/sfu/logmein_12329d2d
_______________________________________________
Fedora-commons-users mailing list
Fedora-commons-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/fedora-commons-users
