Hi Michael,

Thanks for reply.

This is for scenario :

Server#1 : Observium Web server

Server#2 : Database server

How to make sure that, in Observium systems ( Web ) , database Security Server ( DB ) , TCP database port uses TLS v1.2 or above for communications.

This is to ensure communication is secured.

Could share with us information if any.

Thank you.

Regards

Ryan

From: observium <observium-bounces@observium.org> On Behalf Of Michael via observium
Sent: Monday, 4 April 2022 11:08 am
To: Observium <observium@observium.org>
Cc: Michael <obslist@smarsz.com>
Subject: Re: [Observium] Observium - database Security Server and TCP database port uses TLS v1.2 or above for communications

I'd argue that it is pretty much irrelevant in this scenario.

As your database is on the same box as the Observium process, there's no cleartext data being transmitted across the network, which is what that control is designed to address.

If the data is considered sensitive enough, you should probably looking to also encrypt the data at rest within the database (as you would have needed to already compromise the Observium host in order to abuse the above scenario, you've got access to the database regardless). That's a slightly different rabbit hole to fall into.

Michael

On 4 Apr 2022, at 12:40 pm, Ryan Tee via observium <observium@observium.org> wrote:

Hi ,

We would like to check followings in Observium systems.

How to make sure that, in Observium systems, database Security Server and TCP database port uses TLS v1.2 or above for communications.

This is to ensure communication is secured.

Appreciate share with us, to configure setting config.php file in Observium systems.

Regards

Ryan

<image001.png>

_______________________________________________
observium mailing list
observium@observium.org
http://postman.memetic.org/cgi-bin/mailman/listinfo/observium