This article is a mirror article of machine translation, please click here to jump to the original article.

Architect_Programmer_Code Agriculture Network»Architect Other Technologies Safe offense and defense Memcache Unauthorized Access Vulnerability Remediation Scenario
View: 13712|Reply: 1

[Safe Communication] Memcache Unauthorized Access Vulnerability Remediation Scenario

[Copy link]
Posted on 7/10/2016 11:12:06 PM | | |

Vulnerability Description:



Memcache is a commonly used key-value caching system, because it does not have a permission control module, so the memcache service open on the public network is easy to be scanned and discovered by attackers, and the sensitive information in memcache can be directly read through command interaction.





Fix Options:

Since memcache does not have permission control functions, users need to restrict access sources.

Option 1:

If memcache is not required to be open on the public network, you can specify the bound IP address to 127.0.0.1 when memcached starts. For example:

memcached -d -m 1024 -u root -l 127.0.0.1 -p 11211 -c 1024 -P /tmp/memcached.pid

where the -l parameter is specified as the local address.

Scenario 2: (Note: Please configure iptables rules carefully)

If the Memcache service needs to be provided externally, access control can be done through iptables.

iptables -A INPUT -p tcp -s 192.168.0.2 --dport 11211 -j ACCEPT

The above rule means that only the IP address 192.168.0.2 is allowed to access port 11211.




Previous:nginx obtains real access IP logs from 360 Website Guard CDN
Next:nginx prevents CC attacks against the original user's IP

Related Posts
Posted on 11/29/2016 9:56:20 AM |
Good post............
Disclaimer:
All software, programming materials or articles published by Code Farmer Network are only for learning and research purposes; The above content shall not be used for commercial or illegal purposes, otherwise, users shall bear all consequences. The information on this site comes from the Internet, and copyright disputes have nothing to do with this site. You must completely delete the above content from your computer within 24 hours of downloading. If you like the program, please support genuine software, purchase registration, and get better genuine services. If there is any infringement, please contact us by email.
Mail To:help@itsvse.com