Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[docs][examples] Update k8s example to not use 0.0.0.0 on OTLP receiver endpoint #7572

Closed
mx-psi opened this issue Apr 26, 2023 · 0 comments · Fixed by #7580
Closed

[docs][examples] Update k8s example to not use 0.0.0.0 on OTLP receiver endpoint #7572

mx-psi opened this issue Apr 26, 2023 · 0 comments · Fixed by #7580
Labels
area:documentation easy Complexity: Easy good first issue Good for newcomers receiver/otlp

Comments

@mx-psi
Copy link
Member

mx-psi commented Apr 26, 2023
edited
Loading

We raise a warning when using the default OTLP receiver endpoints to mitigate DoS attacks.

Our Kubernetes based example however, uses the default endpoints:

opentelemetry-collector/examples/k8s/otel-config.yaml

Lines 11 to 15 in 9257d7f

receivers:
otlp:
protocols:
grpc:
http:
We should follow the approach that was done in the Helm chart (see open-telemetry/opentelemetry-helm-charts/pull/603) to pass the pod IP through an environment variable.

Once that example is updated, we should link it on the security best practices page as an example of what to do on containerized setups, to avoid the confusion brought up in both #7488 and #6938.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area:documentation easy Complexity: Easy good first issue Good for newcomers receiver/otlp
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

[examples] Update k8s example to not use 0.0.0.0 JaredTan95/opentelemetry-collector
1 participant
@mx-psi