17.16 Filr Security Defaults

  • Client access is only allowed using REST over SSL (HTTPS), using unique self-signed certificates for each instance.

  • All access through Filr is turned off by default.

  • All Filr sharing is off by default.

  • User provisioning can be done via LDAP over SSL (LDAPS).

  • Filr supports replacing self-signed certificates with certificates that have been signed by a trusted certificate authority (CA).

  • All security-related credentials and passwords are encrypted with unique 2048-bit keys.

  • Communication between virtual machines is authenticated and encrypted.

  • The supported TLS version is TLS v1.2.

  • Perfect Forward Secrecy (PFS) is not supported with Filr.