Comments (7)
you should re-generate the certs, you could refer https://github.com/vesoft-inc/nebula-go/tree/master/nebula-docker-compose/secrets for generation and https://github.com/vesoft-inc/nebula-go/blob/master/nebula-docker-compose/docker-compose-ssl.yaml, https://github.com/vesoft-inc/nebula-go/blob/master/nebula-docker-compose/.env for usage in nebula
from nebula.
the password in nebula just encrypt like passout
in openssl genrsa. e.g.
echo "123456" > passphrase.txt
openssl genrsa -passout file:passphrase.txt -out privkey.pem 2048
# and then password_path should be passphrase.txt
from nebula.
@Ha0124 hi, thank you for your feedback. When you mentioned 'customized certificates,' are you referring to self-signed certificates? Or are you saying that these certificates have passwords?
If possible, could you provide any feasible solutions or implementations you have encountered or seen in other products?
from nebula.
When i try to use ssl encryption function following by https://docs.nebula-graph.io/3.6.0/7.data-security/4.ssl/ .
I try to use provided case from /tests, download it to local.
and then add
--password_path=/xx/xx/xx/test.ca.password
--key_path=/xx/xx/xx//nebula/test.ca.key
--cert_path=/xx/xx/xx/test.ca.pem
--enable_ssl=true
to nebula-graphd.conf nebula-metad.conf nebula-storaged.conf
but it doesn't work.
when i set --enable_ssl=false, the services can be linked.
Did the ssl encryption function has limits ?
from nebula.
After you configured the SSL information, did you restart the three services?
from nebula.
After the RSA key pair is generated using openssl genrsa
command, we encrypted the RSA key pair using openssl rsa
command with AES-256-CBC. The key file encrypted using AES-256-CBC is used to meet security requirements. However, nebula may not be able to parse such a key file.
from nebula.
if i doencrypt woth the cert ,will it be accepted in nebula?
from nebula.
Related Issues (20)
- provide the versions and names of all third-party libraries for offline compilation of tag V3.6.0 Nebula source code. HOT 1
- Does the monitoring query interface support obtaining data in HTTPS mode? HOT 1
- How do I know when an edge has been successfully created? HOT 3
- SSL encryption capability,Nebula cannot parse the encrypted key file HOT 2
- Restarting the Nebula cluster has no effect. HOT 1
- Can you organize the contents of the tests/data directory according to the new version?
- some data can only be queried by vid, not by index HOT 1
- When the nebula-console software is used, the plaintext password is leaked by running the `ps -ef` command HOT 4
- Incorrect search for double-conversion: cmake scripts should be used
- thrift1 installed by fbthrift-2024.04.15.00 doesn't support the --strict argument
- Is there any other way to obtain metrics, such as SDK? HOT 1
- nebula 支持ambari插件
- group by 语法校验有问题
- SSL encryption does not take effect. HOT 2
- 如何清空某一tag或者edgetype
- NebulaGraph Console SSL Connection
- Massive unnecessary Raft log rollback causes spike latency. HOT 1
- nebula java client
- 重启nebula服务,storaged 服务启动失败,出现 Found empty wal file
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from nebula.