https://community.dynatrace.com/t5/Dynatrace-Managed-Q-A/Found-vulnerability-in-cassandra-process/m-p/166924#M1671 <P>Hi AskMe Solutions,<BR /><BR />Dynatrace Managed cassandra nodes don't have authentication and authorization enabled. Dynatrace Managed mitigates that risk by automatically putting IP table rules (firewall rules) in place, which make sure that only Dynatrace server nodes are able to access the cassandra port on the cassandra nodes. Cassandra is used only by Dynatrace Managed internally.</P> <P>&nbsp;</P> <P><SPAN class="context new-line show-merge-tag" aria-hidden="false">Dynatrace managed creates a dedicated user "dynatrace" in group "dynatrace" that is used for Cassandra. The user dynatrace is non-privileged service user (no console) and is not used for anything other than Dynatrace Managed.<BR /></SPAN></P> <P>&nbsp;</P> <P><SPAN class="context new-line show-merge-tag" aria-hidden="false"><SPAN style="display: none; width: 0px; height: 0px;">If </SPAN></SPAN></P> <P><SPAN class="context new-line show-merge-tag" aria-hidden="false">If you have further queries about this, I suggest to open a ticket with <A href="https://support.dynatrace.com/" target="_self">Dynatrace Support</A>, or chat with a specialist using the in-product live chat function.<BR /></SPAN></P> Mon, 31 May 2021 23:54:07 GMT The_AM 2021-05-31T23:54:07Z https://community.dynatrace.com/t5/Dynatrace-Managed-Q-A/Found-vulnerability-in-cassandra-process/m-p/166812#M1670 <P>Hello Everyone,</P><P>&nbsp;</P><P>From VA scan report, We have founded vulnerability "JMX Authentication Not Enabled on Localhost Interface" that about SSRF attacks or privilege escalation on the cassandra process of Dynatrace managed. So we need to know what we can do on this vulnerability to secure.</P><P>&nbsp;</P><P>Thank you,</P><P>Dynatrace Askme.</P> Fri, 28 May 2021 07:24:05 GMT https://community.dynatrace.com/t5/Dynatrace-Managed-Q-A/Found-vulnerability-in-cassandra-process/m-p/166812#M1670 AskMe-Solutions 2021-05-28T07:24:05Z https://community.dynatrace.com/t5/Dynatrace-Managed-Q-A/Found-vulnerability-in-cassandra-process/m-p/166924#M1671 <P>Hi AskMe Solutions,<BR /><BR />Dynatrace Managed cassandra nodes don't have authentication and authorization enabled. Dynatrace Managed mitigates that risk by automatically putting IP table rules (firewall rules) in place, which make sure that only Dynatrace server nodes are able to access the cassandra port on the cassandra nodes. Cassandra is used only by Dynatrace Managed internally.</P> <P>&nbsp;</P> <P><SPAN class="context new-line show-merge-tag" aria-hidden="false">Dynatrace managed creates a dedicated user "dynatrace" in group "dynatrace" that is used for Cassandra. The user dynatrace is non-privileged service user (no console) and is not used for anything other than Dynatrace Managed.<BR /></SPAN></P> <P>&nbsp;</P> <P><SPAN class="context new-line show-merge-tag" aria-hidden="false"><SPAN style="display: none; width: 0px; height: 0px;">If </SPAN></SPAN></P> <P><SPAN class="context new-line show-merge-tag" aria-hidden="false">If you have further queries about this, I suggest to open a ticket with <A href="https://support.dynatrace.com/" target="_self">Dynatrace Support</A>, or chat with a specialist using the in-product live chat function.<BR /></SPAN></P> Mon, 31 May 2021 23:54:07 GMT https://community.dynatrace.com/t5/Dynatrace-Managed-Q-A/Found-vulnerability-in-cassandra-process/m-p/166924#M1671 The_AM 2021-05-31T23:54:07Z