Re: Restrict Servlet Access

2007-03-16 Thread Chris Hostetter
: on a given port, say :8983. I have my firewall (iptables) set up so : that the outside world cannot connect to :8983. However, my httpd : server, running on port 80, can connect to solr because they are : running on the same box. Therefore all access to solr is mediated : through whatever applica

Re: Restrict Servlet Access

2007-03-15 Thread Bess Sadler
m: Erik Hatcher [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 14, 2007 11:18 AM To: solr-user@lucene.apache.org Subject: Re: Restrict Servlet Access On Mar 14, 2007, at 11:09 AM, Brian Whitman wrote: The recommendation is to firewall off Solr so only your application server can access it. S

RE: Restrict Servlet Access

2007-03-15 Thread Gunther, Andrew
nt for the naivety. -Andrew -Original Message- From: Erik Hatcher [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 14, 2007 11:18 AM To: solr-user@lucene.apache.org Subject: Re: Restrict Servlet Access On Mar 14, 2007, at 11:09 AM, Brian Whitman wrote: >> >> The recommendat

Re: Restrict Servlet Access

2007-03-14 Thread Jed Reynolds
Gunther, Andrew wrote: What are people doing to restrict UpdateServlet access on production installs of Solr. Are people removing that option and rotating in a new index or restricting access from the jetty side. I'm putting Solr on my DMZ without direct WAN access. If I had to put it on

Re: Restrict Servlet Access

2007-03-14 Thread Erik Hatcher
On Mar 14, 2007, at 11:09 AM, Brian Whitman wrote: The recommendation is to firewall off Solr so only your application server can access it. Solr is not at all designed for direct client (browser, etc) access. Assuming you lock down update properly, what's the problem? We are current

Re: Restrict Servlet Access

2007-03-14 Thread Brian Whitman
The recommendation is to firewall off Solr so only your application server can access it. Solr is not at all designed for direct client (browser, etc) access. Assuming you lock down update properly, what's the problem? We are currently using select directly through the XSLTResponseWrite

Re: Restrict Servlet Access

2007-03-14 Thread Erik Hatcher
On Mar 14, 2007, at 10:12 AM, Gunther, Andrew wrote: What are people doing to restrict UpdateServlet access on production installs of Solr. Are people removing that option and rotating in a new index or restricting access from the jetty side. The recommendation is to firewall off Solr so o

Restrict Servlet Access

2007-03-14 Thread Gunther, Andrew
What are people doing to restrict UpdateServlet access on production installs of Solr. Are people removing that option and rotating in a new index or restricting access from the jetty side. Cheers, Andrew