Comments (6)
@mikkolehtisalo Thanks, that's a very good idea!
from documentation.
@mikkolehtisalo first part should be covered with 7e997f4 what is your opinion on this?
from documentation.
@jalogisch Some good things there! In any case, many companies and such raise the questions "is X secure", and "how to harden X to achieve compliance Y" as a separate step in the process of approving systems for use. Being able to find and verify all necessary (sometimes even small) details is important.
Also, my thinking is that the documentation is growing. It needs more structure, or it becomes messy. (Mostly separating basic installation from extra configuration, which can vary greatly, but this also goes for some security topics that are strictly not mandatory...)
from documentation.
@mikkolehtisalo i see your points. i personal had started to restructure the documentation a little with this #96
Divide between simple and complex setups is not that easy as we would need to rewrite most parts of the documentation and change the logical structure. But we could add some points to the documentation to have them available.
My idea would be to add:
- how to setup and use mongo in HA (in short what needs to be done within mongo and what needs to be configured on graylog)
- how a possible HA setup can look and how this can be secured best by design
But it looks like you @mikkolehtisalo had some insides, what would needed from someone that has not knowledge about the moving parts and how to setup. Can you please suggest in detail what would be needed to fulfill the needs of someone who is looking from a non technical point into the documentation to archive compliance.
If you give us some hints what is needed we can add this step by step to the configuration.
from documentation.
just wanted to share this for apache and nginx TLS config using stronger ciphers https://mozilla.github.io/server-side-tls/ssl-config-generator/
from documentation.
We could never cover a complete security guide as all setups are different and have different needs. In addition MongoDB and Elasticsearch are on a second page - where the later has some fundamental questions to answer before you can decide about the security (OSS Elasticsearch VS Enterprise Elasticsearch).
Will close this and we will/have already in mind to include more information how to secure something PLUS the product will improve in this section.
from documentation.
Related Issues (20)
- `/count` API was not included in the API Removals Section of the upgrading doc
- Add Allowed Auxiliary Paths documentation for the CSV File Adapter
- Add clarifying steps to the O365 Input Page
- Guide for "Sidecar - NXlog collector - GELF input"
- 4.1 Forwarder Documentation HOT 3
- Documentation for Archiving Setup - Clarification of /tmp directory
- Document MongoDB 4.4 compatibility
- Document new core Prometheus Exporter HOT 9
- Update Docs: OVA Initial password not correct
- Broken Graylog Sidecar link HOT 1
- Add some docs and/or pointers to the new docker-compose setup
- Add Java requirements to Forwarder installation
- Provide more details on Java 11 compatibility HOT 1
- Prometheus port in Metric Exporting Guide HOT 2
- openjdk versions and support for Debian / Ubuntu for documentation
- Documentation references Elasticsearch 2.X in a number of places
- Enterprise Docker image isn't mentioned
- Documentation doesn't have the links for 4.2 installation HOT 2
- Request for improvements to "Upgrading Graylog" pages. HOT 1
- Improve Enterprise changelog, documentation
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from documentation.