securityonion icon indicating copy to clipboard operation
securityonion copied to clipboard

Published 20 hours ago verified publisher icon Security-Onion-Solutions

FEATURE: Implement TLS for Strelka communication

Open weslambert opened this issue 2 years ago • 0 comments

Up until now, all Strelka communication has been local to a node. With the option to upload files to the cluster from an external source like an analyst workstation, we should consider adding TLS for frontend access.

Depends on: https://github.com/Security-Onion-Solutions/securityonion/issues/7828

  • so-strelka-filestream (bind-mount sensor cert, extra_hosts for hostname resolution)
  • filestream.yaml
  • frontend.yaml
  • nginx config (57314 - https->57313)
  • Update so-allow

weslambert avatar Apr 20 '22 15:04 weslambert