Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Tier 3 Security evaluation checklist #2285

Open
4 tasks done
helendduncan opened this issue Nov 8, 2024 · 1 comment
Open
4 tasks done

Update Tier 3 Security evaluation checklist #2285

helendduncan opened this issue Nov 8, 2024 · 1 comment
Labels
documentation Improvements to documentation good first issue This is a good issue for newcomers to the project to tackle
Milestone
Release 5.2.0

Comments

@helendduncan
Copy link

helendduncan commented Nov 8, 2024
edited by JimMadge
Loading

✅ Checklist

  • I have searched open and closed issues for duplicates
  • This is a request for a change to documentation
  • This isn't a feature request or bug report
  • This isn't an open-ended question (open a discussion if it is).

📒 Where is the problem?

In the documentation for v 5.0.1 Security checklist for T3 SREs the physical security checks are inconsistent. If the user is connecting from the correct IP address via a VPN then the SHM will not disallow the connection.

Also in the documentation:

Verify that: check the network IP ranges corresponding to the research spaces and compare against the IPs accepted by the firewall.

But it is the NSGs which allow/disallow IPs?

📝 Required documentation changes

Remove the statement

Connection from outside the secure physical space is not possible.
@helendduncan helendduncan added the documentation Improvements to documentation label Nov 8, 2024
@jemrobinson
Copy link
Member

@helendduncan - the recommendation for tier 3 is to set up a network that can only be accessed from a known physical space (i.e. not via a VPN).

@JimMadge JimMadge added this to the Release 5.1.0 milestone Nov 11, 2024
@JimMadge JimMadge added the good first issue This is a good issue for newcomers to the project to tackle label Nov 18, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation Improvements to documentation good first issue This is a good issue for newcomers to the project to tackle
Projects
None yet
Milestone
Release 5.2.0
Development

No branches or pull requests
3 participants
@jemrobinson @JimMadge @helendduncan