I understand. There are many methods of compromising a system. For example, blast random loads of bytes to open ports, until the process on the server dies. Or syn floods. DoS attacks are possible, as long as a port is open, like 9200. But there is also 9300.
There are firewalls or other network setups that can protect backend apps from intruders and DoS attacks. As said, just hide all ES nodes from public network access, or ramp up firewalls settings. Changing the ES environment is the primary solution. Do not fight symptoms, fight the cause. Jörg -- You received this message because you are subscribed to the Google Groups "elasticsearch" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/CAKdsXoEP0w4Dj7Q0OKYj8td3UFvisS00fGJx293kgCbBEbYjLA%40mail.gmail.com. For more options, visit https://groups.google.com/groups/opt_out.
