-
Notifications
You must be signed in to change notification settings - Fork 112
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
insecureSkipTLSVerify is insecure #333
Comments
@dudicoco I guess you can change it, but test it in a test cluster and we would be happy if you could report back, in case you can confirm it works or not. |
@szuecs per the docs, we must supply the |
Then it's a feature request, thanks for checking. If you want you can also file a pull request. |
@szuecs I wouldn't define it as a feature request but more as a security vulnerability. |
@dudicoco if you like. I think the position to successful exploit this vulnerability is an already so powerful position that you have at least dozens of possibilities to exploit the cluster. You can DoS the controller-manager with the "right" hpa for example. |
The
insecureSkipTLSVerify: true
flag is used within the deployment manifest:kube-metrics-adapter/docs/custom-metrics-apiservice.yaml
Line 11 in 9da1555
According to the k8s api docs this should not be used:
InsecureSkipTLSVerify disables TLS certificate verification when communicating with this server. This is strongly discouraged. You should use the CABundle instead.
https://v1-18.docs.kubernetes.io/docs/reference/generated/kubernetes-api/v1.18/#apiservicespec-v1-apiregistration-k8s-io
Was
insecureSkipTLSVerify: true
added because the container generates its own self signed certificate, which cannot be validated by the api server? Can this be resolved somehow?The text was updated successfully, but these errors were encountered: