[jira] [Commented] (HBASE-27118) Add security headers to Thrift/HTTP server

Istvan Toth (Jira) Mon, 07 Aug 2023 06:25:05 -0700


    [ 
https://issues.apache.org/jira/browse/HBASE-27118?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17751672#comment-17751672
 ]


Istvan Toth commented on HBASE-27118:
-------------------------------------

Is there more to do here,  [~andor]  ?

> Add security headers to Thrift/HTTP server 
> -------------------------------------------
>
>                 Key: HBASE-27118
>                 URL: https://issues.apache.org/jira/browse/HBASE-27118
>             Project: HBase
>          Issue Type: Improvement
>          Components: Thrift
>    Affects Versions: 2.0.6, 2.1.10, 2.2.7, 3.0.0-alpha-2
>            Reporter: Andor Molnar
>            Assignee: Andor Molnar
>            Priority: Major
>
> In order to further improve HBase exposed service for vulnerability scanners, 
> would be nice to implement additional security headers for the Thrift server 
> when HTTP transport is enabled.
> Similarly to REST and Web UIs, related tickets are attached.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (HBASE-27118) Add security headers to Thrift/HTTP server

Reply via email to