Hi,
I am running kibana behind an apache webserver which is used as proxy.
I was asked if kibana is save against CSRF (Cross-Site-Request-Forgery).
could you please answer this question?
Thanks Andreas
Hi Andreas,
We try our level best to be safe and fix any security defects as soon as possible. We announce them here: https://www.elastic.co/community/security
Hope that helps 
Cheers,
Bhavya