[ome-users] OMERO and network security...

[Jerome Avondo]

Hi all,

I am trying to build a case/knowledge about setting up a public facing OMERO server.
Let me start with some details about what I mean. 
And by all means I have little if no experience in the matter, hence turning to the wise community for help :)

We would like to have a public facing server.
The server is linked to our LDAP for authentication server.
There will be for now, no public/guest/anonymous accounts.

So the biggest hurdle I have is trying to address the security concerns our network admins have.
I have created a quick fact page for them on our wiki about OMERO and security, it is just a collection of various techie details gathered from the omero website...
Just in a quick read format... http://dmbi.nbi.bbsrc.ac.uk/index.php/Security

It would useful for me to see what people who have faced such issues have done and setup as simple counter measures against attacks or even just best practices that can be adopted to minimize security concerns...

Basically I know the OMERO team have a public demo server.

- Do you have anything "special/extra" from the out of the box OMERO in place to stop attacks on the server?
- Does any one else have a public facing OMERO server and had to deal with such issues?

The main issue I can see so far, and I'm by far no expert, is a brute force attack on the login.. Any recommendations to counter this?
Anyway, hopefully this can start a useful discussion....

Thanks for your time!

Jerome.
 		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openmicroscopy.org.uk/pipermail/ome-users/attachments/20101011/256f2ab1/attachment.html>