The script.disable_dynamic is an important one for anyone running <1.2.0.
You can also look at setting http.enabled for all your nodes, then use a front end client with authentication. Regards, Mark Walkom Infrastructure Engineer Campaign Monitor email: [email protected] web: www.campaignmonitor.com On 4 June 2014 08:49, Hassan Schroeder <[email protected]> wrote: > On Tue, Jun 3, 2014 at 3:33 PM, 'Adolfo Rodriguez' via elasticsearch > <[email protected]> wrote: > > i was using release elasticsearch-0.90.5 in my exploited server, so maybe > > this is already fixed in current release by disabling > script.disable_dynamic > > by default > > I got caught by this a week ago using 1.1.0 on Ubuntu 12.04. Had > not even thought about a high port like 9200 being open by default. > (And no, there's no Tomcat or Struts app on that box.) > > Luckily NewRelic tipped me off right away and I was able to put it > into rescue mode while I provisioned a new server. > > One more item for the checklist :-) > > -- > Hassan Schroeder ------------------------ [email protected] > http://about.me/hassanschroeder > twitter: @hassan > > -- > You received this message because you are subscribed to the Google Groups > "elasticsearch" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/d/msgid/elasticsearch/CACmC4yC%3D24X-0OBT3weju9s_9v--RJ4yLBahPn6dSuKwBho2ig%40mail.gmail.com > . > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "elasticsearch" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/CAEM624a75uoa4PXU6WW0_RHDBozFUE9-xO8wNCDsqN4w5%2BZuRA%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
