Welcome to OCS Inventory NG community support, where you can ask questions and receive answers from other members of the community.

Please ask questions only in English or French.

Release 2.12.3 available

The official documentation can be found on https://wiki.ocsinventory-ng.org. Read it before asking your question.

Categories

How to prevent rogue clients

hy, has ocs-inventory a strong feature to prevent rogue clients from registering ? I only know that there is perhaps the possibilty to use the same password on any client.

Kind regards

Sokatra
in OCS Inventory NG server for Unix by (24.4k points)
Share on
share on gp share on fb share on tw share on li

2 Answers

0 votes
The only way to prevent rogue clients to register on your OCS is to use htaccess.

You can define login/password and/or ip restrictions with it.
by (22k points)
0 votes
I think this should be changed that every client is able to register to the server.

It was easy for me to search for a OCS-Inventory instance where i can download the OCSpackage and install it on a VM. Now i have the client password !!

I don't want to dive deeper in here because i don't want inspire someone to to bad things, but i can tell you that this is possible in some instances.

I think in the long run the security model should be improved.

Right now i have to think about a possible solution before i write on github. perhaps a unambiguous Client Cert.

Kind regards
by (24.4k points)
I don't use OCSpackage so I never had this problem.

Simply deploy your agent with puppet/chef/rudder/ansible or what you want and nobody will be able to get the password.
by (22k points)
 
Powered by Question2Answer
...