You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Does anyone know how to make t-pot with "xpack.security.enabled: true" work?
Because of the unencrypted health check on an encrypted channel it is always shown as unhealthy and reboots itself. Where do I change the health check configuration to HEALTHCHECK --retries=10 CMD curl -XGET --cacert /etc/elasticsearch/certs/http_ca.crt -u elastic https://localhost:9200/_cat/health'? The /opt/tpot/docker/elk/elasticsearch/Dockerfile takes effect only at the first compose, right?
Running manually in the elasticsearch container the curl -XGET --cacert /etc/elasticsearch/certs/http_ca.crt -u elastic https://localhost:9200 command gives also a failure message:
"curl: (35) error:0A00010B:SSL routines::wrong version number". That is another issue.
Gives actually extra security if encryption between elasticsearch, kibana, etc exist, or should I just forget about it?
Thanks!
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Hi!
Does anyone know how to make t-pot with "xpack.security.enabled: true" work?
Because of the unencrypted health check on an encrypted channel it is always shown as unhealthy and reboots itself. Where do I change the health check configuration to HEALTHCHECK --retries=10 CMD curl -XGET --cacert /etc/elasticsearch/certs/http_ca.crt -u elastic https://localhost:9200/_cat/health'? The /opt/tpot/docker/elk/elasticsearch/Dockerfile takes effect only at the first compose, right?
Running manually in the elasticsearch container the curl -XGET --cacert /etc/elasticsearch/certs/http_ca.crt -u elastic https://localhost:9200 command gives also a failure message:
"curl: (35) error:0A00010B:SSL routines::wrong version number". That is another issue.
Gives actually extra security if encryption between elasticsearch, kibana, etc exist, or should I just forget about it?
Thanks!
Beta Was this translation helpful? Give feedback.
All reactions