![]() ![]() If a user visits an address with an expired token, they will get a message instructing them to click on the tray item again. This change is imperceptible to users, as clicking on the "My Device" tray item always uses a valid token. The osquery 'configuration' is read from a config plugin. This helps Fleet protect against unintentionally leaked or brute-forced tokens.Īs a consequence, Fleet Desktop will issue a new token if the current token is: An osquery deployment consists of: Installing the tools for Windows, macOS, or Linux Reviewing the osqueryd introduction Configuring and starting the osqueryd service (this page) Managing and collecting the query results Configuration components. Starting with Fleet v4.22.0, the server will reject any token older than one hour since it was issued. Token Rotation ℹ️ In Fleet v4.22.0, token rotation for Fleet Desktop was introduced. If an IP requests more than 720 invalid UUIDs in a one-hour interval, Fleet will return HTTP error code 429. To prevent brute-forcing, Fleet rate-limits the endpoints used by Fleet Desktop on a per-IP basis. Fleet uses the following methods to secure access to this information. The server uses this token to authenticate requests that give host information. ![]() Requests sent by Fleet Desktop and the web page that opens when clicking on the "My Device" tray item use a Random (Version 4) UUID token to uniquely identify each host. On the settings page, go to "Organization Settings" and select "Fleet Desktop." Use the "Custom transparency URL" text input to specify the custom URL.įor information on how to set the custom transparency link via a YAML configuration file, see the configuration files documentation. To turn on the custom transparency link in the Fleet GUI, click on your profile in the top right and select "Settings." The custom transparency link is only available for users with Fleet Premium ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |