Erlang Mailing Lists
Author Message

<  RabbitMQ mailing list  ~  Wild Rabbits
Guest
Posted: Mon Dec 03, 2007 1:02 am Reply with quote
Guest
Guys,

I'm thinking about building an with RabbitMQ and the upcoming lift (http://liftweb.net) support for RabbitMQ.

The application would have a public instance of RabbitMQ.
Back to top
tonyg
Posted: Mon Dec 03, 2007 10:33 am Reply with quote
User Joined: 07 Nov 2006 Posts: 199
Hi David,

David Pollak wrote:
> What are the
> security ramifications of a RabbitMQ instance in the wild being able to
> receive messages from any old client and routing those messages. Is it
> possible to filter the routing so malicious messages do not get sent
> from one client to another?

Interesting. You'd have to do that on an application level at present -
extracting messages from some intermediate queue, filtering, and
submitting again targetted at the ultimate recipients - but with a bit
of hacking on the erlang, you could send any delivered message through
an erlang-language filtering routine.

AMQP doesn't have any notion of global addressing or federation at
0-8/0-9 level, so there's no possibility of ending up with an SMTP-style
spam relay.

> Also, can the clients connect to RabbitMQ through an HTTP connection as
> an alternative to the standard AMPQ port? Some corporate firewalls make
> it challenging to connect to anything other than an HTTP server.

If you like, you can set up the broker to listen on a non-standard port
as well as or instead of the default. Set the NODE_PORT environment
variable to 80 before starting the broker, or edit the rabbitmq-server
script to add extra TCP endpoints to the "-rabbit tcp_listeners ..." line.

Regards,
Tony
--
[][][] Tony Garnock-Jones | Mob: +44 (0)7905 974 211
[][] LShift Ltd | Tel: +44 (0)20 7729 7060
[] [] http://www.lshift.net/ | Email: tonyg@lshift.net

_______________________________________________
rabbitmq-discuss mailing list
rabbitmq-discuss@lists.rabbitmq.com
http://lists.rabbitmq.com/cgi-bin/mailman/listinfo/rabbitmq-discuss
Post recived from mailinglist
Back to top View user's profile Send private message MSN Messenger
Guest
Posted: Mon Dec 03, 2007 2:45 pm Reply with quote
Guest
Tony,

On Dec 3, 2007 2:33 AM, Tony Garnock-Jones <tonyg@lshift.net (tonyg@lshift.net)> wrote:
Quote:
Hi David,

David Pollak wrote:
> What are the
> security ramifications of a RabbitMQ instance in the wild being able to
> receive messages from any old client and routing those messages.
Back to top
0x6e6562
Posted: Mon Dec 03, 2007 3:04 pm Reply with quote
User Joined: 12 Jul 2007 Posts: 250
> I'm not sure that works so well. Many corporate firewalls have HTTP
> proxies. They expect well formed HTTP.

What about the http transport (http://dev.rabbitmq.com/snapshots/rabbitmq-http/)?
I haven't used it myself, but as far as I understand it proxies http
into amqp methods.

HTH,

Ben

_______________________________________________
rabbitmq-discuss mailing list
rabbitmq-discuss@lists.rabbitmq.com
http://lists.rabbitmq.com/cgi-bin/mailman/listinfo/rabbitmq-discuss
Post recived from mailinglist
Back to top View user's profile Send private message

Display posts from previous:  

All times are GMT
View next topic
View previous topic
Page 1 of 1
Erlang Forum - Trap Exit Forum Index  ~  RabbitMQ mailing list
This forum is locked: you cannot post, reply to, or edit topics.

Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum
Hosted by Erlang Solutions    |    Powered by phpBB and NoseBleed v1.14