Security

Community Activity

Why Deployment Client talks to Server with plain HTTP instead of HTTPS? Even a client have enableSplunkdSSL = true, it don't try to setup SSL and send REST request via a plain HTTP, what is... by JakeConcur Engager in Security 10-21-2014 0 1	0	1
What's the quickest way to lock a user out of Splunk? We've discovered a malicious user (hypothetical) using our Splunk instance. What's the quickest way to lock out this... by the_wolverine Champion in Security 10-20-2014 1 1	1	1
Security and privileges in Splunk I've a setup where, I've an index called "mobile" that stores mobile event dataThe index has feed from mobile events... by ronak Path Finder in Security 10-19-2014 0 2	0	2
Disable Report Acceleration for Specifc Roles - however do not disable report scheduling? [Were running v6.0.1] Hi, quick question please, from the documentation if we want to disable a user-role from being... by t9445 Path Finder in Security 10-15-2014 0 1	0	1
SSLv3 POODLE Vulnerability: Does Splunk use SSLv3 by default for its transport security protocol? Hi, Does Splunk use SSLv3 by default for it's transport? I've read the security announcement, but I'm trying to det... by a212830 Champion in Security 10-15-2014 0 3	0	3
Why can't I change the permissions for a macro I just created? I just created a macro and by default it is private but I can't see the permissions link next to it to change it. Do... by rpolanco New Member in Security 10-14-2014 0 1	0	1
Why am I getting SplunkWeb start "error: [Errno 99] Cannot assign requested address" after moving the Splunk folder to another server with a different IP? I moved the splunk folder from one server to another with a different IP I reinstalled the correct version of splunk ... by hartfoml Motivator in Security 10-13-2014 1 4	1	4
Fresh install - cannot login Hi, I really don't get it. I just install (for the first time) Splunk (Splunk 5.0.4 build 172409) on my debian serve... by clempat New Member in Security 10-11-2014 0 5	0	5
Splunk with LDAP - How to reset admin password in Splunk Web Someone asked: "(how to) reset admin password on server configured with LDAP (i'm) not able to change admin password... by Genti Splunk Employee in Security 10-09-2014 2 2	2	2
How to aviod or figure out pool size in Splunk? Hi All, I am new to splunk, I have 14 node cluster in that splunk master and slaves. Searching something in splaunk... by prasadjvv522 Explorer in Security 10-09-2014 1 9	1	9
Search & Report dropdown list limit Is it possible to limit the contents of the Search & Reports dropdown list in any view to just the saved searches for... by kmattern Builder in Security 10-07-2014 0 4	0	4
Password doesn't work on home computer but does work on internet site When I use the password on the internet it works and on the home computer it does not work and I've got no option to ... by rgrea New Member in Security 10-07-2014 0 4	0	4
I Splunk Enterprise 5.0.4 vulnerable to Heartbleed? HI, Is there any article that states whether 5.0.4 is or is not vulnerable to Heartbleed? thks by newbiesplunk Path Finder in Security 10-06-2014 0 3	0	3
Is there a way to change the certificate used for port 8089? Hello, during our vulnerability assessment we found that the certificate that port 8089 uses is vulnerable as its le... by arber Communicator in Security 10-06-2014 1 1	1	1
Why am I getting "Error in HTTP server: shutting down" when starting splunkweb? Hello all ! Environment: - OS - Ubuntu 12.04.6 - Splunk - splunk-6.1.3-220630-linux-2.6-amd64.deb - Installed via... by letsrumbl Engager in Security 10-05-2014 1 2	1	2
Unix shell shock vulnerability: Is Splunk web or mgt port vulnerable to attacks when running on Unix system with shell shock vulnerability? Regarding the shell shock vulnerability, and assuming the host where Splunk or Splunkforwarder is running has the she... by bandit Motivator in Security 09-29-2014 5 4	5	4
How to increase "Search Request Time limit" in advance LDAP setting Hi Experts, I am configuring a dynamic LDAP group with SPLUNK .This group has more then 50,000 users.My advance LDAP... by vikas_gopal Builder in Security 09-29-2014 0 1	0	1
How to restrict user access to a new index? i have a user access dilemma: i have 10 indexes. index=index_a, index_b,index_c,index_d,index_e,index_f,index_g,inde... by gurinderbhatti Path Finder in Security 09-26-2014 2 6	2	6
Block Signing in Distributed Search Environment Hello Splunkers, I'd like to configure Block Signing in an environment where I have two indexers in a cluster and a ... by Mahieu Communicator in Security 09-24-2014 1 2	1	2
Splunk Change ur own password Capability -- Not Working in Splunk 6.1.2 version Hi , I have a created a role called "userrole" and have imported the default "user" role capabilities and added the ... by rakesh_498115 Motivator in Security 09-23-2014 0 4	0	4
Detect events with sequential values Hi, I'm trying to discover if a public URL is being misused by analsying the access logs. Basically, the URL contain... by echalex Builder in Security 09-23-2014 0 4	0	4
AuthenticationManagerLDAP Error Message and BaseDN setting Hi All, We are currently getting the following error ERROR AuthenticationManagerLDAP - Could not find user="nobody... by asarolkar Builder in Security 09-22-2014 1 5	1	5
Splunk LDAP integration support LDAP Extended Controls? Does Splunk LDAP intergration support LDAP Extended Controls? In particular Matching rule OID 1.2.840.113556.1.4.194... by bmacias84 Champion in Security 09-19-2014 0 1	0	1
After integrating Splunk with active directory, should we map LDAP attribute from AD with Splunk account? Hi, I integrated SPLUNK with AD successfully and able to login with AD credentials. In addition to this should we m... by rameshlpatel Communicator in Security 09-16-2014 0 1	0	1
cumulativeRTSrchJobsQuotaがうまく動きません authorize.confにあるcumulativeRTSrchJobsQuotaを使って、ロールベースでリアルタイムサーチの同時実行数を制限しようとしましたが、うまく動作しません。cumulativeRTSrchJobsQuota... by cwl Contributor in Security 09-16-2014 1 1	1	1