github/kube-hunter
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-hunter.git synced 2026-05-24 01:55:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
bf7023d01c08086ec5cf2a836da3b451b4fcd2b2
kube-hunter/docs/_kb/KHV021.md
Itay Shakury 8cc90db8f5 add kb index (#252)
2019-10-30 20:38:16 +02:00

551 B
Raw Blame History

vid, title, categories
vid title categories
KHV021 Certificate Includes Email Address
Information Disclosure

{{ page.vid }} - {{ page.title }}

Issue description

The Kubernetes API Server advertises a public certificate for TLS. This certificate includes an email address, that may provide additional information for an attacker on your organization, or be abused for further email based attacks.

Remediation

Do not include email address in the Kubernetes API server certificate. (You should continue to use certificates to secure the API Server!)

Reference in New Issue View Git Blame Copy Permalink