You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Multiple security audits got triggered on our company because they found the windows exporter service responded with an html page at the root and exposed the endpoint from there (/metrics, /health, /version)
Even though I’m not a big fan of security by obfuscation maybe introducing a flag to disable the home page (/) could make sense and make the exporter less visible in enterprise environment.
The text was updated successfully, but these errors were encountered:
Multiple security audits got triggered on our company because they found the windows exporter service responded with an html page at the root and exposed the endpoint from there (
/metrics
,/health
,/version
)Even though I’m not a big fan of security by obfuscation maybe introducing a flag to disable the home page (
/
) could make sense and make the exporter less visible in enterprise environment.The text was updated successfully, but these errors were encountered: