Hello,
I am in the process of implementing Odoo for a new customer. The scope is mainly a management system for the internal manufacturing processes. But the customer would like to give to his salesforce the possibility to register quotes in the field. Therefore, the system will be open to the external world.
In my studies, I remember our security teacher saying that in such cases, the system open to the external world should be placed in a demilitarized zone (DMZ) to avoid direct access to the main ERP system.
I am quite worried about this requirement, since to my knowledge, Odoo V10 cannot be splitted into two instances that communicate in secure manner, at least witout an important investment. On the other hand, I have already got two snippets of information, being that :
if Odoo.com is offering an eCommerce module integrated with the solution, they have probably taken the security risks into account.
another cloud specialist told me that DMZ was a story of the past and not needed anymore in a cloud environment like Amazon AWS.
Have you already faced such security concerns, and how did you solve/minimized them ?
Many thanks for sharing your experience or providing your expertise.
Didier
Hi, please check this,
https://www.odoo.com/page/security
Thanks Niyas, but of course I know this page... Still, the question remains : why is Odoo not designed to run on two different instances, one facing the public, and the other one nested under additional security layers and talking only in controlled formats, like in a DMZ ? Is this type of security obsolete or would be worth considering ?
An ERP system is crucial for a business, and having only backups as last resort does not seem to me satisfactory. Some people mentionned talks that happened already on this subject in mailing lists. Could someone lead me to these exchanges. Or did some of you solved the problem by creating your own interface ?
Again, thanks for all your inputs.