We're excited to introduce a new security feature that automatically safeguards your Redis instances using Access Control Lists (ACLs). With this update, RunCloud ensures that your Redis deployments are securely configured by default, providing an additional layer of protection for your data.
This is particularly important if you host multiple web applications on a single server.
Newly-deployed servers and web applications are secured by default.
Note: The minimum agent version is 2.8.9+8.
Learn more & refer to this guide on how to secure existing web applications.
A big thank you goes out to the security researcher – Vladimir Smitka – who performed a series of tests and originally reported this proposed improvement to how Redis works by default on RunCloud.
Due to the individual/custom configurations of existing web apps – the setup process may vary slightly. If you run into any issues, please feel free to get in touch if you run into any issues.