TacticalRMM - Security
notverypunny last edited by gjacobse
So I've been testing TacticalRMM in our environment and after reviewing with some colleagues, we need to tighten control to the admin interface. I've followed the instructions here https://wh1te909.github.io/tacticalrmm/securing_nginx/ and it works to block the public IP addresses, but as soon as there's ..... *** googling and a few more grey hairs*****
So the syntax in the documentation might work with escaped chars and other foolishness, but I found that using
SecRule REMOTE_ADDR "[email protected] xxx.xxx.xxx.xxx"
SecRule REMOTE_ADDR "[email protected] IP1"
allows for use of simple formatting as well as CIDR Ranges
Now we all know!