Splunk On Call Integration

In this guide we will cover: – What is the Splunk On Call Integration? – Connecting to Splunk On Call  – Configuring and Integrating Splunk On Call – Creating Splunk On Call Webhooks What is the Splunk On Call Integration? Splunk on Call is an incident management platform designed to help teams respond quickly to problems […]

X.509 for encryption

Passwords and secrets are encrypted with an X.509 certificate built into the app by default. It is reccomended to use your own self-signed X.509 certificate for encryption. Generate a self-signed certificate First, you need to generate a self-signed certificate to use for encryption. If you have not done this before, you can download a free […]

Protect token signing keys with a certificate

When authenticating in Halo, access tokens are signed with a key. We recommend encrypting this key with an X.509 certificate. Generate a self-signed certificate First, you need to generate a self-signed certificate to use for encryption. If you have not done this before, you can download a free tool to do this for you here; […]

Read-only connection for reports

Prevent abuse of the report builder by ensuring a database connection with read-only privileges is used for SQL reports. Create a SQL user with read-only access to the Halo database Create a new SQL user account in SQL Server Management Studio by going to Security > Logins, right-click on Logins and select New Login. Use […]

Enabling Secure Cookies in the Web Application

Enable secure cookies to stop cookies from being sent over HTTP. This is not enabled by default as it makes the application unusable over HTTP. Before enabling ensure an upgrade from HTTP to HTTPS is enabled as the app will no longer function over HTTP. Add the following property into the 3 appsettings.json files at […]

Enable HTTP strict transport security (HSTS)

This ensures all traffic to the Halo site can only use a secure HTTPS connection. HTTPS must already be configured for the web application. Currently, these steps are required after any upgrade. If HTTPS/SSL is not configured, and HSTS is enabled, the application will not work. Open web.config in the root of your Halo web […]

Http to Https redirect in web app

How to get http to redirect to https in the web app. Open appsettings.json in the root folder (not api or auth). Add "httpsonly":true like in the below; Restart the site. Now when browsing to the http version it will be replaced with the https version.

CVE-2023-44487 – HTTP/2 Rapid Reset Attack and the Halo Hosted Platform

The Vulnerability The official statement from NIST is available HERE The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. How this affects Halo This vulnerability exists in the HTTP/2 protocol and is not specific to […]

CVE-2024-6200 – Stored Cross-Site Scripting in Tickets

General Information This article contains frequently asked questions relating to the store cross-site scripting vulnerability affecting Halo versions up to 2.143.6. Users with the permission to open tickets may embed malicious JavaScript code into them, that, when accessed by another user, executes within the context of that user. Are hosted Halo instances affected? Hosted customers […]

CVE-2023-4863

The issue is resolved as of version 2.170.1 see Update 31/10/2024 for more information General Information This article contains frequently asked questions relating to the heap buffer overflow vulnerability affecting libwebp. On September 11, 2023, Google published a stable channel update to address the vulnerability with weblibp and assigned CVE-2023-4863 to track this vulnerability. libwebp […]