2 months ago
I'm researching the security and privacy compliance I'll have a as a startup operating on Railway.
I believe the data on at least Postgres is encrypted at rest, is that right? What about Redis? And can you say anything about the type of encryption?
If I'm making a connection using SSL, that also means that the connection to the database is encrypted, right? So it's encrypted in transit.
Are there any low-hanging fruit recommendations you make as a user of Postgres or databases running on Railway to improve security for end customers?
0 Replies
2 months ago
1fb7b057-4030-4839-a1f8-68638ed52a4e
2 months ago
hello,
All data in all volumes are encrypted as rest.
databases via the TCP proxy do not have encryption, with the one exception being our Postgres image, as it comes with a self-signed cert.
^ because of that, for the security conscious, it would be best to only connect to the database via the private network.
also, this is likely something you'd be interested in looking at -
2 months ago
and if you'd be interested in connecting to your database locally without connecting to it publicly, I can help you set that up too via Tailscale.