2. 程式人生 > >Redis protected-mode 保護模式

Redis protected-mode 保護模式

阿新 發佈:2019-01-11

Redis protected-mode 是3.2 之後加入的新特性,在Redis.conf的註釋中,我們可以瞭解到,他的具體作用和啟用條件

# Protected mode is a layer of security protection, in order to avoid that
# Redis instances left open on the internet are accessed and exploited.
#
# When protected mode is on and if:
#
# 1) The server is not binding explicitly to a set of addresses using the
 

#    "bind" directive.
# 2) No password is configured.
#
# The server only accepts connections from clients connecting from the
# IPv4 and IPv6 loopback addresses 127.0.0.1 and ::1, and from Unix domain
# sockets.
#
# By default protected mode is enabled. You should disable it only if
# you are sure you want clients from other hosts to connect to Redis
 

# even if no authentication is configured, nor a specific set of interfaces
# are explicitly listed using the "bind" directive.
protected-mode yes

可以看到 Protected-mode 是為了禁止公網訪問redis cache,加強redis安全的。

它啟用的條件,有兩個:
1) 沒有bind IP
2) 沒有設定訪問密碼

如果啟用了,則只能夠通過lookback ip(127.0.0.1)訪問Redis cache,如果從外網訪問,則會返回相應的錯誤資訊:

(error) DENIED Redis is running in protected mode because protected mode is enabled, no bind address was specified, no authentication password is requested to clients. In this mode connections are only accepted from the lookback interface. If you want to connect from external computers to Redis you may adopt one of the following solutions: 1) Just disable protected mode sending the command 'CONFIG SET protected-mode no' from the loopback interface by connecting to Redis from the same host the server is running, however MAKE SURE Redis is not publicly accessible from internet if you do so. Use CONFIG REWRITE to make this change permanent. 2) Alternatively you can just disable the protected mode by editing the Redis configuration file, and setting the protected mode option to 'no', and then restarting the server. 3) If you started the server manually just for testing, restart it with the --portected-mode no option. 4) Setup a bind address or an authentication password. NOTE: You only need to do one of the above things in order for the server to start accepting connections from the outside.

相關推薦

Redis protected-mode 保護模式

Redis protected-mode 是3.2 之後加入的新特性,在Redis.conf的註釋中,我們可以瞭解到,他的具體作用和啟用條件 # Protected mode is a layer of security protection, in or

redis 報錯 Redis protected-mode 配置檔案沒有真正啟動

(error) DENIED Redis is running in protected mode because protected mode is enabled Redis protected-mode 是3.2 之後加入的新特性,在Redis.con

Redis執行在保護模式

使用redis客戶端連線遠端reids後,執行 ping命令報如下錯誤: DENIED Redis is running in protected mode because protected mode is enabled, no bind address was spe

redis 報錯 Redis protected-mode 配置檔案沒有真正啟動

本文轉載: ----------------------------------------------------------------- 其實,有一個不用修改配置的方式。使用 127.0.0.1 地址替代本地的ip地址啟動。 在客戶端連線時,我本地的ip

Linux kernel boot process——從真實模式(real mode)到保護模式protected mode),再到分頁(paging)

        本文簡要介紹X86-32架構下的Linux kernel被boot loader(如grub)載入到記憶體後,如何從最初的真實模式,切換到保護模式,並開啟分頁機制。本文不涉及boot loader如何將核心載入到記憶體,因為這是boot loader的事,跟

什麼是IE中的保護模式(protected mode)

保護模式是從Windows Vista中引進的一個新的安全控制機制。它將作業系統中執行的程序(process)和物件(比如登錄檔,資料夾)進一步劃分了安全等級。有3個級別(High, Medium, Low),如果一個Low安全級別的程序(比如一個IE程序)要往具有Medi

Linux kernel boot process——從真實模式(real mode)到保護模式protected mode),再到分頁(paging) .

       本文簡要介紹X86-32架構下的Linux kernel被boot loader(如grub)載入到記憶體後,如何從最初的真實模式,切換到保護模式,並開啟分頁機制。本文不涉及boot loader如何將核心載入到記憶體,因為這是boot loader的事,跟核

redis關閉保護模式

redis在啟動的時候預設會啟動一個保護模式,只有同一個伺服器可以連線上redis。別的伺服器連線不上這個redis 解決辦法:關閉保護模式 1、進入redis安裝目錄       vi red

Redis 無法遠端訪問。關閉其保護模式

開啟 redis.conf,修改配置為以下 daemonize no #修改redis的守護程序為no ,不啟用 #bind 127.0.0.1 #註釋以下繫結的主機地址 protected-mode no #修改redis的保護模式為no,不啟用 還有一些基

已解決:客戶端無法登入Redis伺服器報錯,解除保護模式

一:問題如下 在192.168.56.57客戶端登入192.168.56.56的redis伺服器時,報錯如下: [[email protected] src]# ./redis-cli

Redis Sentinel配置使用過程中的一個坑(DENIED Redis is running in protected mode

        根據官網示例配置完sentinel.conf,大致新增如下配置項: port 26379 sentinel monitor mymaster 172.17.16.7 6379 2 sentinel auth-pass mymaster

redis 錯誤 Error reply to PING from master: '-DENIED Redis is running in protected mode because prote

做主從的時候,碰到下面問題 Error reply to PING from master: ‘-DENIED Redis is running in protected mode because p

redis解決(DENIED Redis is running in protected mode because prote)

本文轉載自:http://news.tuxi.com.cn/news/16541999999012402/4020207.html 在應用上telnet埠和ping都沒有問題,為什麼還獲取不到值呢。 先安裝一個redis客戶端進行測試:yum -y install r

Spring 整合 Redis報錯 DENIED Redis is running in protected mode because protected mode is enabled, no b

Spring 整合 Redis報錯 DENIED Redis is running in protected mode because protected mode is enabled, no bind address was sp… 1.因為是第一次

Redis連線報錯:DENIED Redis is running in protected mode because protected mode is enabled

問題:Could not get a resource from the pool, Connection refused: connect 該問題說,redis目前處於受保護模式,不允許非本地客

操作redis時出現 DENIED Redis is running in protected mode

在操作redis時,出現DENIED Redis is running in protected mode這說明redis是執行在保護模式開啟redis的redis.conf 檔案通過/ 找到 protected-mode yes將yes 改成no 即可。友情提示:通過 :n

DENIED Redis is running in protected mode because protected mode is enabled, no bind address was spe

(error) DENIED Redis is running in protected mode because protected mode is enabled Redis protected-mode 是3.2 之後加入的新特性,在Redis.co

redis 保護模式處理

config  get  *   檢視報復模式是否開啟config  get propected-modeconfig  set propected-mode  no  關閉保護模式  會使redis 不安全配置redis密碼 ip在redis.conf 裡面配置自己的ip在

關於Jedis連線Linux上的redis出現 DENIED Redis is running in protected mode問題的解決方案

  最近有段時間沒有寫部落格了,今天抽出時間寫寫,之前開發的時候redis部署在Linux是其他人搞得,我沒怎麼參與,於是閒

x86CPU 實模式 保護模式 傻傻分不清楚? 基於Xv6-OS 分析CR0 寄存器

獲取 ack oot pop -o sdn 行程 model 保護 基於Xv6-OS 分析CR0 寄存器 之前一直認為暈乎乎的...啥?什麽時候切換real model,怎麽切換,為什麽要切換? -----------------------------------