Redis Security?

http://www.itnews.com.au/news/insecure-redis-caches-abused-for-linux-server-attacks-435968

Is there a way to specify a password for redis in cscart?

http://www.itnews.com.au/news/insecure-redis-caches-abused-for-linux-server-attacks-435968


Is there a way to specify a password for redis in cscart?


Suggest this issuse

http://forum.cs-cart.com/tracker/project-1-cs-cart/

Suggest this issuse

http://forum.cs-cart.com/tracker/project-1-cs-cart/

Unfortunately, there is no way to use password for Redis database on CS-Cart. Even your Redis instance has a password, keep in mind that RESP (Redis protocol) is text-based and all data between nodes are transferred unencrypted. The best way is restrict an access to 6379/tcp (or other TCP-port) using firewall's rules or set Redis to listen on 127.0.0.1 or ::1 in case you have Redis on the same machine.