diff options
author | Lukas Larsson <[email protected]> | 2017-05-18 16:11:11 +0200 |
---|---|---|
committer | Lukas Larsson <[email protected]> | 2017-05-23 14:47:04 +0200 |
commit | 30f4fc6963e5793368713897f32afd2172dc1578 (patch) | |
tree | 976e2f11cc4d200f4344ec18c2ce430add4e8dc1 /lib/kernel | |
parent | 05dce0f330c83278cb134c7235a5353ce4116307 (diff) | |
download | otp-30f4fc6963e5793368713897f32afd2172dc1578.tar.gz otp-30f4fc6963e5793368713897f32afd2172dc1578.tar.bz2 otp-30f4fc6963e5793368713897f32afd2172dc1578.zip |
otp: Extend secure distribution docs warnings
Warnings have been added to the relevant documentation
about not using un-secure distributed nodes in exposed
environments.
Diffstat (limited to 'lib/kernel')
-rw-r--r-- | lib/kernel/doc/src/net_kernel.xml | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/lib/kernel/doc/src/net_kernel.xml b/lib/kernel/doc/src/net_kernel.xml index 4e2b0c69db..7ddb849824 100644 --- a/lib/kernel/doc/src/net_kernel.xml +++ b/lib/kernel/doc/src/net_kernel.xml @@ -64,6 +64,19 @@ $ <input>erl -sname foobar</input></pre> by the magic cookie system, see section <seealso marker="doc/reference_manual:distributed">Distributed Erlang</seealso> in the Erlang Reference Manual.</p> + <warning> + <p> + Starting a distributed node without also specifying + <seealso marker="erts:erl#proto_dist"><c>-proto_dist inet_tls</c></seealso> + will expose the node to attacks that may give the attacker + complete access to the node and in extension the cluster. + When using un-secure distributed nodes, make sure that the + network is configured to keep potential attackers out. + See the <seealso marker="ssl:ssl_distribution"> + Using SSL for Erlang Distribution</seealso> User's Guide + for details on how to setup a secure distributed node. + </p> + </warning> </description> <funcs> |