Is the Wildfire 3.1.1 embedded DB externally accessible?

Brennan_Anthony · January 8, 2007, 2:39pm

We have a Fedora Core 5 box running the latest version of Wildfire, and I need to be sure as to whether or not the embedded-db is externally accessible.

We are using LDAP for user authentication.

We definitely don’‘t want it to be, so if it is we’'ll have to set up rules in IPTables…

I was hoping it wasn’'t by default as a security measure.

If someone could please confirm either way, I’'d appreciate it.

Thanks,

Brennan

LG1 · January 8, 2007, 3:09pm

Hi,

the embedded db has no tcp listener, so you’'re quite secure. You should change the permission of the embedded-db/ directory to make sure that only the user which is running Wildfire can modify it as it is a plain text file.

LG

Brennan_Anthony · January 8, 2007, 4:48pm

Thank you sir. I appreciate the information and quick response!