How to set Apache solr admin password

Question

I an not very familiar with solr. I have installed solr successfully. It is using jetty webserver. My solr version is 4.10.3. It admin page is not protected by password. Any

Answer 1

As setting a password to Solr is a pain in the ass (sorry, but some time you have to name it as it is) I propose an other solution: Restrict access to it using iptables.

If you install Apache Solr Server usually the Server will listen on Port 8983. Hence the servers admin interface will be available under:

http://YOUR_SERVERS_IP:8983/solr/

So we can restrict connections to port 8983 as follows:

iptables -A INPUT -p tcp -s localhost --dport 8983 -j ACCEPT
iptables -A INPUT -p tcp -s YOUR_SERVERS_IP --dport 8983 -j ACCEPT
iptables -A INPUT -p tcp --dport 8983 -j DROP

This will accept all requests from localhost (first line) and from the server's IP itself (second line), but drop all other connections (last line). The second line is not necessary but helps us to find easy access to Solr's admin interface. To access the admin interface form a local machine, we have to forward all connections to the server at first. The easiest way to do this, is using sshuttle (lazy mans VPN):

sshuttle --dns -r root@YOUR_SERVERS_IP 0/0

Performing this command on the local machine, from where we want to access the admin interface. An other option is, to use ssh tunnelling with the open ssh client:

ssh -D 1080 root@YOUR_SERVERS_IP

Set up a socks proxy in your browser to port 1080.