search

splunk / splunk-operator

Splunk Operator for Kubernetes
Other
210 stars 115 forks source link

CSPL-2655 - Add default.meta in the telemetry addressing vulnerability #1364

Closed akondur closed 3 months ago

akondur commented 3 months ago

Adding access permissions to the telemetry app to address a vulnerability.

Standalone

[splunk@splunk-demo-standalone-0 metadata]$ pwd
/opt/splunk/etc/apps/app_tel_for_sok8s_stdaln/metadata
[splunk@splunk-demo-standalone-0 metadata]$ cat default.meta
[]
access = read : [ * ], write : [ admin ]

LM

[splunk@splunk-lm-example-c3-license-manager-0 metadata]$ pwd
/opt/splunk/etc/apps/app_tel_for_sok8s_lmanager/metadata
[splunk@splunk-lm-example-c3-license-manager-0 metadata]$ cat default.meta
[]
access = read : [ * ], write : [ admin ]

SHC:

[splunk@splunk-shc-example-c3-search-head-0 metadata]$ pwd
/opt/splunk/etc/apps/app_tel_for_sok8s_shc/metadata
[splunk@splunk-shc-example-c3-search-head-0 metadata]$ cat default.meta
[]
access = read : [ * ], write : [ admin ]

Cluster Manager:

[splunk@splunk-cm-new-c3-cluster-manager-0 metadata]$ pwd
/opt/splunk/etc/apps/app_tel_for_sok8s_cmanager/metadata
[splunk@splunk-cm-new-c3-cluster-manager-0 metadata]$ cat default.meta
[]
access = read : [ * ], write : [ admin ]