RackTables runs as a PHP web application with operationally sensitive infrastructure inventory. Security should focus on strict auth controls, web stack hardening, and secure exports.
¶ 1) Protect web access and admin privileges
- Restrict admin access to trusted network segments.
- Enforce strong password policy and remove inactive accounts.
- Limit who can edit racks, networks, and object metadata.
- Disable anonymous or weakly authenticated access modes.
¶ 2) Harden PHP and database stack
- Force HTTPS and secure session cookie settings.
- Keep MySQL/MariaDB private and authenticated.
- Restrict write permissions on application directories.
- Patch PHP runtime and RackTables code on regular cadence.
¶ 3) Control data export and backup risk
- Review and limit permissions for CSV/XML/API exports.
- Encrypt backups containing IP address maps and infrastructure metadata.
- Keep backup restore tests in maintenance runbooks.
- Log configuration changes and high-impact object edits.
- RackTables project site: https://www.racktables.org/
- RackTables source repository: https://github.com/RackTables/racktables
Any questions?
Feel free to contact us. Find all contact information on our contact page.