snmp_exporter

snmp_exporter copied to clipboard

http://hostname:port/config exposes the config of the exporter which may NOT be intended in some environments

What about a command line switch like --expose-config to enable (if default is OFF) or --no-expose-config to disable (if default is ON)

Can you share redacted snippets of what you saw happen, please?

If we did something like the proposed switch, it should most likely be implemented in the exporter toolkit to carry more widely.

Can you share redacted snippets of what you saw happen, please?

I managed to see the credentials in clear in the exposed config - but can no longer tell how I did... :-( Most probably by a corrupt snmp.yml... I was under impression this handling is default which is why I created #691 - and learned it is not, which is why I closed it again. Correct file seems to work fine, secrets are replaced. In case I can reproduce again I will document in new issue.

As for request #692: in my case even username and remaining settings from auth: section have to be hidden. Config in general not needed for me. This lead to this request to just not expose it.