Securing localhost-only machine

Is it safe only doing this?

sudo sed -i "s/address any/address 127.0.0.1/g" /etc/aerospike/aerospike.conf                                                                                       
cat /etc/aerospike/aerospike.conf | grep address
sudo systemctl restart aerospike

or other ports (3001,3003) also need to be secured to localhost (if it so, how?)

$ sudo netstat -antp | grep as
tcp        0      0 127.0.0.1:3000          0.0.0.0:*               LISTEN      17855/asd           
tcp        0      0 0.0.0.0:3001            0.0.0.0:*               LISTEN      17855/asd           
tcp        0      0 0.0.0.0:3003            0.0.0.0:*               LISTEN      17855/asd

You also need to configure the address configuration for network.fabric and network.info configuration contexts…

1 Like

This topic was automatically closed 6 days after the last reply. New replies are no longer allowed.

© 2015 Copyright Aerospike, Inc. | All rights reserved. Creators of the Aerospike Database.