ctdb-doc: Document reasons for separating private and public networks

author Martin Schwenke <martin@meltin.net>

Thu, 21 Jan 2016 09:02:41 +0000 (20:02 +1100)

committer Martin Schwenke <martins@samba.org>

Wed, 27 Jan 2016 11:14:29 +0000 (12:14 +0100)
author Martin Schwenke <martin@meltin.net>
Thu, 21 Jan 2016 09:02:41 +0000 (20:02 +1100)
committer Martin Schwenke <martins@samba.org>
Wed, 27 Jan 2016 11:14:29 +0000 (12:14 +0100)
diff --git a/ctdb/doc/ctdb.7.xml b/ctdb/doc/ctdb.7.xml

index 6fab41cff5c62eac4408ff8a6fea30365a2f1c65..40d3387f078f7e49a797ada7bb33d092820232af 100644 (file)
--- a/ctdb/doc/ctdb.7.xml
+++ b/ctdb/doc/ctdb.7.xml
@@ -179,7 +179,12 @@
        <para>
          It is strongly recommended that the private addresses are
          configured on a private network that is separate from client
-        networks.
+        networks.  This is because the CTDB protocol is both
+        unauthenticated and unencrypted.  If clients share the private
+        network then steps need to be taken to stop injection of
+        packets to relevant ports on the private addresses.  It is
+        also likely that CTDB protocol traffic between nodes could
+        leak sensitive information if it can be intercepted.
        </para>
  
        <para>
author	Martin Schwenke <martin@meltin.net>
	Thu, 21 Jan 2016 09:02:41 +0000 (20:02 +1100)
committer	Martin Schwenke <martins@samba.org>
	Wed, 27 Jan 2016 11:14:29 +0000 (12:14 +0100)