>>> Mario Freytag <m.frey...@webinc.eu> schrieb am 17.06.2022 um 11:39 in Nachricht <fr0p281mb16924707dedcf096a3fa6b1de9...@fr0p281mb1692.deup281.prod.outlook.com>:
> Dear sirs, or madams, > > I’d like to ask about the security of corosync. We’re using a Proxmox HA > setup in our testing environment and need to confirm it’s compliance with PCI > guidelines. > > We have a few questions: > > Is the communication encrypted? > What method of encryption is used? > What method of authentication is used? > What is the recommended way of separation for the corosync network? VLAN? The answer you probably do not expect is this: Assume the communication is safely encrypted, but a third party can interrupt communication, is the system safe then? In that light probably any system using the Internet as transport is not safe, so you can set up your private connections (which should be private per definition ;-)) Regards, Ulrich > > Best regards > > Mario Freytag > Systemadministrator | WEBINC GmbH & Co. KG > > Unter den Eichen 5 Geb. F | 65195 Wiesbaden | T +49 611 541075 0 > Amtsgericht Wiesbaden | HRA 9610 | Geschäftsführung: Marina Maurer, Monika > Brandes _______________________________________________ Manage your subscription: https://lists.clusterlabs.org/mailman/listinfo/users ClusterLabs home: https://www.clusterlabs.org/
