Re: secure solr 5.3.1

2015-12-10 Thread Don Bosco Durai
ere password. >> > >> > 2015-12-10 9:35 GMT+00:00 kostali hassan : >> > >> > > Iam looking to secure my solr runing in standalone Mode the kerberose >> > > plugin is only able to secure solr in standalone mode. >> > > >> > > 2

Re: Re: secure solr 5.3.1

2015-12-10 Thread kostali hassan
; > > 2015-12-09 23:00 GMT+00:00 kostali hassan : > > > > > >> -- Message transféré -- > > >> De : "Ishan Chattopadhyaya" > > >> Date : 9 déc. 2015 19:39 > > >> Objet : Re: secure solr 5.3.1 > > >> À :

Re: Re: secure solr 5.3.1

2015-12-10 Thread Ishan Chattopadhyaya
t; > > > 2015-12-09 23:00 GMT+00:00 kostali hassan : > > > >> -- Message transféré -- > >> De : "Ishan Chattopadhyaya" > >> Date : 9 déc. 2015 19:39 > >> Objet : Re: secure solr 5.3.1 > >> À : > >>

Re: Re: secure solr 5.3.1

2015-12-10 Thread kostali hassan
ose > plugin is only able to secure solr in standalone mode. > > 2015-12-09 23:00 GMT+00:00 kostali hassan : > >> -- Message transféré -- >> De : "Ishan Chattopadhyaya" >> Date : 9 déc. 2015 19:39 >> Objet : Re: secure solr 5.3.1

Re: secure solr 5.3.1

2015-12-09 Thread Ishan Chattopadhyaya
I don't have much personal experience with setting up a kerberos server on a Windows machine, but I remember things being painful when I tried and failed once. If you have an option to use a VM, I suggest try setting up the KDC in a GNU/Linux VM (through VirtualBox). In that case, make sure the Win

Re: secure solr 5.3.1

2015-12-09 Thread Ishan Chattopadhyaya
Alternatively, you could also try using BasicAuth, which doesn't require this additional setup of a KDC. On Thu, Dec 10, 2015 at 1:04 AM, Ishan Chattopadhyaya < ichattopadhy...@gmail.com> wrote: > I don't have much personal experience with setting up a kerberos server on > a Windows machine, but

Re: secure solr 5.3.1

2015-12-09 Thread kostali hassan
I install MIT Kerberos for Windows 4.0.1 2015-12-09 19:05 GMT+00:00 Ishan Chattopadhyaya : > What exactly is your confusion? Do you have access to a KDC? > > Briefly: > Login to your KDC server, do a kadmin.local: > Then, > addprinc HTTP/192.168.0.107 > ktadd -k /tmp/107.keytab HTTP/192.168.0.107

Re: secure solr 5.3.1

2015-12-09 Thread Ishan Chattopadhyaya
What exactly is your confusion? Do you have access to a KDC? Briefly: Login to your KDC server, do a kadmin.local: Then, addprinc HTTP/192.168.0.107 ktadd -k /tmp/107.keytab HTTP/192.168.0.107 Then copy the keytab file to your solr node to the appropriate places. On Thu, Dec 10, 2015 at 12:08 A

Re: secure solr 5.3.1

2015-12-09 Thread kostali hassan
I folow this two resources and Iam stuck in - Create service principals and keytab files. 2015-12-09 18:06 GMT+00:00 Ishan Chattopadhyaya : > The kerberos plugin is available for use with Solr out of the box. The two > resources which Bosco mentioned should get you up and running. > > On Wed

Re: secure solr 5.3.1

2015-12-09 Thread Ishan Chattopadhyaya
The kerberos plugin is available for use with Solr out of the box. The two resources which Bosco mentioned should get you up and running. On Wed, Dec 9, 2015 at 11:34 PM, Don Bosco Durai wrote: > There are two resources available: > > > https://cwiki.apache.org/confluence/display/solr/Kerberos+A

Re: secure solr 5.3.1

2015-12-09 Thread Don Bosco Durai
There are two resources available: https://cwiki.apache.org/confluence/display/solr/Kerberos+Authentication+Plugin https://cwiki.apache.org/confluence/display/RANGER/How+to+configure+Solr+Cloud+with+Kerberos+for+Ranger+0.5 Bosco On 12/9/15, 3:14 AM, "kostali hassan" wrote: >how I settin

Re: secure solr 5.3.1

2015-12-09 Thread kostali hassan
how I setting up Solr to use Kerberos ? i have to dowload kerberos and put the plug-in implementation in the classpath(/server/solr). 2015-12-08 22:19 GMT+00:00 Ishan Chattopadhyaya : > Right, as Bosco said, this has been tested well and supported on SolrCloud. > It should be possible to run it i

Re: secure solr 5.3.1

2015-12-08 Thread Ishan Chattopadhyaya
Right, as Bosco said, this has been tested well and supported on SolrCloud. It should be possible to run it in standalone mode, but it is not something that has been well test yet. On Tue, Dec 8, 2015 at 11:02 PM, Don Bosco Durai wrote: > It was tested and meant to work only in SolrCloud mode. >

Re: secure solr 5.3.1

2015-12-08 Thread Don Bosco Durai
It was tested and meant to work only in SolrCloud mode. On Tue, Dec 8, 2015 at 9:30 AM -0800, "kostali hassan" wrote: - Kerberos authentication : work in SolrCloud or standalone mode but the documentation is not clear - https://cwiki.apache.org/confluence/display/s

Re: secure solr 5.3.1

2015-12-08 Thread kostali hassan
- Kerberos authentication : work in SolrCloud or standalone mode but the documentation is not clear - https://cwiki.apache.org/confluence/display/solr/Kerberos+Authentication+Plugin?focusedCommentId=61

Re: secure solr 5.3.1

2015-12-08 Thread Don Bosco Durai
Not sure exactly what you mean here. Even if you are running in SolrCloud, you can access it using URL. So there won't be any change on the client side. Bosco On Tue, Dec 8, 2015 at 2:03 AM -0800, "kostali hassan" wrote: if I run solr in SolrCloud mode , my web hosting shoud be C

Re: secure solr 5.3.1

2015-12-08 Thread kostali hassan
if I run solr in SolrCloud mode , my web hosting shoud be Cloud web hosting? or dont need a web server having cloud..? 2015-12-08 1:58 GMT+00:00 Don Bosco Durai : > Have you considered running your Solr as SolrCloud with embedded zookeeper? > > If you do, you have multiple options. Basic Auth, Ke

Re: secure solr 5.3.1

2015-12-07 Thread Don Bosco Durai
Have you considered running your Solr as SolrCloud with embedded zookeeper? If you do, you have multiple options. Basic Auth, Kerberos and authorization support. Bosco On 12/7/15, 7:03 AM, "kostali hassan" wrote: >How I shoud secure my server of solr 5 .3.1 in single-node Mode. I Am >se

Re: secure Solr server

2013-01-28 Thread Mark Miller
I think this has come up on the mailing list before. I don't remember the details, but you want to restrict the admin UI but not the CoreAdmin url - /admin/cores. - Mark On Jan 28, 2013, at 4:37 PM, Marcin Rzewucki wrote: > Hi, > > If you add security constraint for /admin/*, SolrCloud will

Re: secure Solr server

2013-01-28 Thread Marcin Rzewucki
Hi, If you add security constraint for /admin/*, SolrCloud will not work. At least that's what I had in Solr4.0. I have not tried the same with Solr4.1, but I guess it is the same. Also I found some issues with URL patterns in webdefault.xml This: /core/update works, but for some reason this

Re: secure Solr server

2013-01-27 Thread Isaac Hebsh
You can define a security filter in WEB-INF\web.xml, on specific url patterns. You might want to set the url pattern to "/admin/*". [find examples here: http://stackoverflow.com/questions/7920092/how-can-i-bypass-security-filter-in-web-xml ] On Sun, Jan 27, 2013 at 8:07 PM, Mingfeng Yang wrote:

Re: Secure Solr

2006-06-21 Thread Yonik Seeley
On 6/21/06, Tricia Williams <[EMAIL PROTECTED]> wrote: It seems to me that the way that documents are indexed and managed via Solr using http get requests leaves your index open to malicious attacks as anyone with the right syntax and some information about your index could commit changes to