Community


Self hosted server security

John Doe, User (Posts: 3)
Jul 29, 2017 3:39:13 am EDT
Support level: Free or trial
Hello,

When we use the self hosted server, it seems there is no authentication to connect hosts to server.

Does that mean anyone can just add hosts to our self hosted server and use our server as relay without us knowing ?
Conrad, Support (Posts: 3068)
Jul 29, 2017 2:34:54 pm EDT
Hello  John,

Thank you for your post.

Currently, yes, it is possible, although it cannot lead to any breach of the server or other harm. Besides, the probability that someone knows exactly at which IP address (or DNS name) and port your server service is running is very low.

However, in the near future we will implement features that will prevent such unauthorized use of the relay function. As for the nearest server update, we will add the ability to specify different communication ports for Viewers and Hosts that they use to talk to the server.

Don't hesitate to ask me if you have other questions.
John Doe, User (Posts: 3)
Jul 30, 2017 3:12:56 pm EDT
Support level: Free or trial
Hello Conrad,

Thank you for the information.

It's great to hear about these updates.

Being able to specify different ports for host and viewer will help us a lot.

Will you add some kind of server side manual validation for hosts or viewer to prevent unauthorized use or some other kind of mechanism ?
Conrad, Support (Posts: 3068)
Jul 31, 2017 3:52:06 am EDT
Hello John,

Will you add some kind of server side manual validation for hosts or viewer to prevent unauthorized use or some other kind of mechanism ?

We'll see if we can implement something more automatic, so to say.

Thanks!

* Website time zone: America/New_York (UTC -5)