iHRIS / iHRIS

iHRIS V
GNU Lesser General Public License v3.0
38 stars 48 forks source link

Make Elastic Search and Kibana default config to be password protected #505

Open ApostleDreSong opened 5 months ago

ApostleDreSong commented 5 months ago

I want to suggest that the Elastic search and Kibana services be password protected in the iHRIS default config to provide an extra layer of security for a host that might have their ports open by malicious agents

ashaban commented 5 months ago

Latest version of elasticsearch has this by default.

On Thu, 6 Jun 2024, 15:40 Damilare Ademeso, @.***> wrote:

I want to suggest that the Elastic search and Kibana services be password protected in the iHRIS default config to provide an extra layer of security for a host that might have their ports open mistakenly or by malicious agents

— Reply to this email directly, view it on GitHub https://github.com/iHRIS/iHRIS/issues/505, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAYBXMKTKO4TIIHDNLNIK5DZGBKC3AVCNFSM6AAAAABI4UZAFKVHI2DSMVQWIX3LMV43ASLTON2WKOZSGMZTQMJWGA3TKMQ . You are receiving this because you are subscribed to this thread.Message ID: @.***>

ApostleDreSong commented 5 months ago

You mean 8.14 right?

Thanks for the response

ashaban commented 5 months ago

8.14 yes even 8.13.4 as well, im not sure about other versions prior to 8.13.4