Re: [Health] Securing GNU Health server

[ronald munjoma]

Hi Vincent,

On 28 March 2014 16:08, Vincent Buijtendijk <address@hidden> wrote:

Hi Axel,

Thanks for your reply.

Currently I have the install on Linux (Ubuntu, possibly moving to Debian). Reason for my security concerns is that  it's running on a virtual server in a datacenter.

Another option I was thinking about was to encrypt the partition where GNU Health and PostgreSQL are installed with something like TrueCrypt?

A long time ago, Dr Chris Larsen once posted about how he installed GNU Health in a jail with chroot on FreeBSD. Chris if you don't mind sharing your experience and set up (I still have the old set up instructions and files, if you don't mind and if still relevant I can share with Vincent and the community).

Thanks and Regards

Ronald Munjoma

 

Regards,

Vincent

On Fri, Mar 28, 2014 at 2:42 PM, Axel Braun <address@hidden> wrote:

Hi Vincent,

Am Freitag, 28. März 2014, 10:55:15 schrieb Vincent Buijtendijk:

> Would anybody be able to share some tips to secure a server running GNU
> Health? Like most of you probably we are dealing with sensitive data so I
> would like to secure it as much as possible.

That depends first of all on the platform you are on, as Windoze differs from
Mac OS or Linux. Can you provide this info?

General: Keep it in a separate box, not on a workstation, if you want to serve
more than one client from it.

> I am thinking about an SSL certificate of which I already have found some
> information online, in order to secure the communications.

Thats in general a good idea, see e.g.
http://code.google.com/p/tryton/wiki/InstallationonopenSUSE#Setting_up_SSL_communication_with_the_Tryton_server

> However I also would like to secure the actual data without hampering user
> experience too much. Is there a way to encrypt the PostGreSQL database ?

No idea, sorry.
Not sure that it really makes sense to encrypt the database.

HTH/Axel