Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
Kea
Kea
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 446
    • Issues 446
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Merge Requests 72
    • Merge Requests 72
  • Operations
    • Operations
    • Incidents
  • Packages & Registries
    • Packages & Registries
    • Container Registry
  • Analytics
    • Analytics
    • Repository
    • Value Stream
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Members
    • Members
  • Collapse sidebar
  • Activity
  • Graph
  • Create a new issue
  • Commits
  • Issue Boards
  • ISC Open Source Projects
  • KeaKea
  • Issues
  • #1587

Closed
Open
Opened Dec 03, 2020 by Francis Dupont@fdupontDeveloper

Security and Kea new ARM section

I propose a new section in the ARM about security and Kea with this plan:

  • privileged sockets for DHCP service
  • control channel using UNIX sockets
  • local use of the control agent
  • remote use of the control agent

There is no remote access to UNIX sockets as they are local objects. And of course if (when) we change the control agent function for instance putting the HTTP endpoint in servers this will have to be rewritten.

The document is being created here: https://gitlab.isc.org/isc-projects/kea/-/wikis/security.

Edited Dec 17, 2020 by Tomek Mrugalski
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
kea1.9.6
Milestone
kea1.9.6
Assign milestone
Time tracking
None
Due date
None
Reference: isc-projects/kea#1587