How to disable HTTP OPTIONS on port 9200 which our scan tool is flagging as a vulnerability. If we cannot, could you please share a reason that I could share with my security team (link to a document would be prefarable)

Disable HTTP OPTIONS on port 9200

bhupendra.mskhatri (Bhupendra Khatri) July 29, 2024, 3:07am 5

Thankyou @leandrojmp .
And would it be correct to claim that all http methods on port 9200 are safe i.e. any malicious attack using the http methods on port 9200 is difficult (if not impossible) as access to this port is password protected?

Topic		Replies	Views
Is Unsecured OPTIONS Method A Vulnerability? Elasticsearch	2	981	July 6, 2017
How to disable DELETE API Elasticsearch	5	7129	July 6, 2017
Need Help -- How to Provide Security to "transport.tcp.port [9300-9400]" Elasticsearch	3	1602	July 6, 2017
Can the http port be closed/disabled if its not being used? Elasticsearch	2	404	July 6, 2017
Elasticsearch-angular.js authentication issue Kibana	3	1740	July 6, 2017

Disable HTTP OPTIONS on port 9200

Related topics