[zeromq-dev] Fwd: Access control
Pieter Hintjens
ph at imatix.com
Tue Jul 27 17:56:16 CEST 2010
On Tue, Jul 27, 2010 at 5:54 PM, Pieter Hintjens <ph at imatix.com> wrote:
>> Wait - they can connect to our publisher: otherwise the Internet
>> wouldn't be much use from behind NAT. It's just making connections back
>> to them that's difficult.
>
> Of course they can connect to the publisher but there is no way for
> your application code to authenticate those connections.
Incidentally that raises some other concerns for Internet scale use:
- how to block IP addresses (e.g. to prevent DoS attacks)
Martin, any idea how you'd solve that? Callbacks to application code
to allow/deny new connection requests, perhaps?
-Pieter
More information about the zeromq-dev
mailing list