Security: HSTS not enabled on kubernetes and docker ports
Bug #1869526 reported by
Ghada Khalil
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Triaged
|
Low
|
Andy |
Bug Description
Brief Description
-----------------
Nessus scan reports the following low security finding:
HSTS not enabled on kubernetes and docker ports
To address this report, need to enable HSTS for k8s port 6443, docker ports 9001 & 9002
Severity
--------
Minor security concern
Branch/Pull Time/Commit
-------
Tested on stx master
Test Activity
-------------
Security Scan
description: | updated |
tags: | added: stx.security |
Changed in starlingx: | |
assignee: | nobody → Andy (andy.wrs) |
To post a comment you must log in.
Would be nice to fix in stx.4.0 as this is a security concern