Thanks. I am still confused. Can we just configure Https in Prometheus for scrape to address cwe693 STS.
Or If we enable TLS in node exporter to fix STS vaulnerability. Kindly clarify. Thanks Selvam E. On Tue, 24 Nov 2020, 21:49 [email protected], <[email protected]> wrote: > node_exporter isn't accessed via a browser - it's accessed only from > prometheus scrapes. > > If you configure prometheus to scrape using https, then it will only use > https. STS won't make any difference. > > Furthermore, if you configure node_exporter to use TLS, then it will > *only* serve TLS. It doesn't provide separate http and https ports (like > port 80 and port 443). So STS doesn't make any sense. > > -- > You received this message because you are subscribed to the Google Groups > "Prometheus Users" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/d/msgid/prometheus-users/faea5830-a516-4b68-9b81-40bdc863c9fbn%40googlegroups.com > <https://groups.google.com/d/msgid/prometheus-users/faea5830-a516-4b68-9b81-40bdc863c9fbn%40googlegroups.com?utm_medium=email&utm_source=footer> > . > -- You received this message because you are subscribed to the Google Groups "Prometheus Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/prometheus-users/CAKhb3ruv8TLhR09h2MtyFxw0PO%3DsNTS4_jZhgxyF48h9i33vAg%40mail.gmail.com.
