EPICS Home EPICS Controls Argonne National Laboratory

Experimental Physics and
Industrial Control System

Format page
for printing


Search Tech-talk
2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  <20192020  2021  2022  2023  2024  Index 2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  <20192020  2021  2022  2023  2024 
<== Date ==> <== Thread ==>
Subject: Re: Proposed Changes in EPICS Base, PCAS and ca-gateway: Ignore IPs by environment / check IPs in access security
From: "J. Lewis Muir via Core-talk" <[email protected]>
To: Goetz Pfeiffer <[email protected]>
Cc: [email protected]
Date: Fri, 6 Dec 2019 15:48:08 -0600 
On 12/06, Goetz Pfeiffer via Core-talk wrote:
> I would like to hear your comments and suggestions regarding this topic.
> 
> The changes consist of three parts:
> 
> - Define networks to be ignored by servers with environment variable
>   EPICS_CAS_IGNORE_NET_LIST

What about just using EPICS_CAS_IGNORE_ADDR_LIST but extending its
syntax to allow specifying networks (e.g., 192.168.12.0/24)?  Or you
could extend the syntax to allow specifying a range with a ".." literal
(e.g., 192.168.12.0..255)?

It seems a bit weird to have two separate variables: one for addresses
and one for networks.  You're still trying to specify a list of
addresses, you're just wanting to introduce the ability to specify a
range of addresses in a short form.

> - Define networks to be ignored by clients with environment variable
>   EPICS_CA_IGNORE_NET_LIST

Similar comment here as above.  What about just adding
EPICS_CA_IGNORE_ADDR_LIST instead, and using it like
EPICS_CAS_IGNORE_ADDR_LIST?

Lewis
Replies:
Re: Proposed Changes in EPICS Base, PCAS and ca-gateway: Ignore IPs by environment / check IPs in access security Goetz Pfeiffer via Core-talk
References:
Proposed Changes in EPICS Base, PCAS and ca-gateway: Ignore IPs by environment / check IPs in access security Goetz Pfeiffer via Core-talk
Navigate by Date:
Prev: Build failed: epics-base base-fix/c99math-287 AppVeyor via Core-talk
Next: Build failed: EPICS Base base-7.0-489 AppVeyor via Core-talk
Index: 2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  <20192020  2021  2022  2023  2024 
Navigate by Thread:
Prev: Re: Proposed Changes in EPICS Base, PCAS and ca-gateway: Ignore IPs by environment / check IPs in access security Goetz Pfeiffer via Core-talk
Next: Re: Proposed Changes in EPICS Base, PCAS and ca-gateway: Ignore IPs by environment / check IPs in access security Goetz Pfeiffer via Core-talk
Index: 2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  <20192020  2021  2022  2023  2024 
ANJ, 09 Dec 2019 Valid HTML 4.01! · Home · News · About · Base · Modules · Extensions · Distributions · Download ·
· Search · EPICS V4 · IRMIS · Talk · Bugs · Documents · Links · Licensing ·