With all the recent attacks using management software, how is NetData any less vulnerable to hacks (is it more safe for any reason)? I love it, but for my servers, it keeps me awake at night! (do you have any white papers on this?).
I am referring, of course, to recent hacks by REvil group into the Kaseya Ransomware attacks, and previous SolarWinds. NetData has high privilege to the core operations of a server too, so I’d like to know what NetData does to prevent these types of attacks, and/or what we, as users need to do for prevention of attacks using NetData.
Let’s take first things first. The Netdata Cloud is a very well-designed SaSS platform, by a team of senior engineers. We take security very seriously, but there is no reason it should be more secure than others.
Note that we don’t store passwords or metrics. Instead of p/w we use a magic link to login and for the nodes, we store only metadata. When you view your dashboard, you view the metrics as streamed by the node.
For the agent, it runs without special privileges and if you use proper security measures (e.g nginx reverse-proxy, block connections not from localhost, etc.) it should be very secure.
Please note that the Netdata Cloud can’t make any change to the Netdata Agent (currently). It simply receives data (to stream them to you) and alarms (to send notifications, show in the dashboard).
These links might prove useful:
Thanks @wmertens for responding. @ivan your comment is on-point, @johnstonf I have edited your post to remove the ethnic definition. It’s not relevant to this discussion.
It’s a fine line, but it’s best not to phrase things in a manner that others might find disrespectful. We don’t do that here, but I am sure you didn’t intend it that way.