Security
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How do I disable the display of release messages on login page?

mctester
Communicator
‎05-10-2010 05:50 PM

Having the release update notes on the log in page of splunk is nice however it is a security risk as well. An attacker can easily see the current version of splunk and use that info for an attack. Also splunk sends updates to this page showing latest release and reasons for updating to the latest release. This provides even more info to the hacker. IS this a user configuration setting to not show this info ... if so .. the default setting should be to not show this info on the login web page.

This info could be displayed after the user logs in ?

Tags (2)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

Mick
Splunk Employee
Splunk Employee
‎05-10-2010 06:01 PM

You can disable the login page banner content by changing the updateCheckerBaseURL setting in $SPLUNK_HOME/etc/system/local/web.conf

updateCheckerBaseURL = http://quickdraw.Splunk.com/js/
   * These are various Splunk.com urls that are configurable. 
   * Setting updateCheckerBaseURL to 0 will stop the SplunkWeb from pinging Splunk.com 
     for new versions of itself.

The only way to remove the version information at the bottom of the page would be to edit the template files in $SPLUNK_HOME/share/splunk/search_mrsparkle/templates/account/login.html and .../logout.html - however, these updates will not persist through an upgrade so you will have to re-apply them as part of your upgrade process

View solution in original post

Reply
Solved! Jump to solution
Solution

Mick
Splunk Employee
Splunk Employee
‎05-10-2010 06:01 PM

You can disable the login page banner content by changing the updateCheckerBaseURL setting in $SPLUNK_HOME/etc/system/local/web.conf

updateCheckerBaseURL = http://quickdraw.Splunk.com/js/
   * These are various Splunk.com urls that are configurable. 
   * Setting updateCheckerBaseURL to 0 will stop the SplunkWeb from pinging Splunk.com 
     for new versions of itself.

The only way to remove the version information at the bottom of the page would be to edit the template files in $SPLUNK_HOME/share/splunk/search_mrsparkle/templates/account/login.html and .../logout.html - however, these updates will not persist through an upgrade so you will have to re-apply them as part of your upgrade process

Reply
Solved! Jump to solution

halbeisendv
Path Finder
‎01-26-2017 10:20 AM

You can disable the login page banner content by changing the updateCheckerBaseURL setting in $SPLUNK_HOME/etc/system/local/web.conf

updateCheckerBaseURL = 0

THIS DOES NOT FUNCTION AS EXPECTED in Splunk 6.5.0.

What other course of action can I take.

Reply
Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Dynamic formatting from XML events

This challenge was first posted on Slack #puzzles channelFor a previous puzzle, I needed a set of fixed-length ...

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

  🚀 Your data just got a serious AI upgrade — are you ready? Say hello to the Agentic Era with the ...

Stronger Security with Federated Search for S3, GCP SQL & Australian Threat ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...