ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    TacticalRMM - Security

    IT Discussion
    tacticalrmm security block public
    1
    1
    392
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • notverypunnyN
      notverypunny
      last edited by gjacobse

      So I've been testing TacticalRMM in our environment and after reviewing with some colleagues, we need to tighten control to the admin interface. I've followed the instructions here https://wh1te909.github.io/tacticalrmm/securing_nginx/ and it works to block the public IP addresses, but as soon as there's ..... *** googling and a few more grey hairs*****

      So the syntax in the documentation might work with escaped chars and other foolishness, but I found that using

      SecRule REMOTE_ADDR "!@ipMatch xxx.xxx.xxx.xxx"

      instead of

      SecRule REMOTE_ADDR "!@eq IP1"

      allows for use of simple formatting as well as CIDR Ranges

      Now we all know!

      1 Reply Last reply Reply Quote 3
      • 1 / 1
      • First post
        Last post