User contributions
(newest | oldest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)
- 17:35, 23 October 2014 (diff | hist) . . (+692) . . N Security/Kilo/Sahara (Created page with "This page documents security related details for the Sahara project in the OpenStack Kilo release. === Implemented Crypto === ? === Used Crypto === ? ==== Libraries ==== ? ===...") (current)
- 17:32, 23 October 2014 (diff | hist) . . (-27) . . Security/Kilo (→Incubated Projects) (current)
- 17:31, 23 October 2014 (diff | hist) . . (+52) . . Security/Kilo (→Integrated Projects)
- 17:29, 23 October 2014 (diff | hist) . . (+2,189) . . N Security/Kilo (Created page with "'''WORK IN PROGRESS''' This page aims to capture an overview of security related information for integrated projects in the OpenStack Kilo release. The information that this...")
- 19:47, 21 October 2014 (diff | hist) . . (-11) . . Security Notes (→Published Security Notes)
- 19:46, 21 October 2014 (diff | hist) . . (+6,416) . . N OSSN/OSSN-0039 (Created page with "__NOTOC__ == Configuring OpenStack deployments to prevent POODLE attacks == === Summary === POODLE (CVE-2014-3566) is a new attack on SSLv3 that allows an active network-bas...")
- 17:51, 21 October 2014 (diff | hist) . . (-11) . . Security Notes (→Published Security Notes)
- 17:50, 21 October 2014 (diff | hist) . . (+2,772) . . N OSSN/OSSN-0025 (Created page with "__NOTOC__ == Possible Glance image exposure via Swift == === Summary === Glance is able to use Swift as a back end for storing virtual machine images. When Glance is configu...")
- 16:39, 21 October 2014 (diff | hist) . . (-78) . . Security Notes (→Published Security Notes)
- 16:34, 21 October 2014 (diff | hist) . . (+1,679) . . N OSSN/OSSN-0037 (Created page with "__NOTOC__ == Configure Horizon to mitigate BREACH/CRIME attacks == === Summary === Horizon is vulnerable to BREACH/CRIME style chosen plaintext attacks in it's default confi...")
- 16:30, 21 October 2014 (diff | hist) . . (+1,215) . . N OSSN/OSSN-0036 (Created page with "__NOTOC__ == Horizon does not set Secure Attribute in cookies == === Summary === Horizon does not, by default, set the Secure Attribute in cookies. === Affected Services /...")
- 16:24, 21 October 2014 (diff | hist) . . (+2,011) . . N OSSN/OSSN-0035 (Created page with "__NOTOC__ == HTTP Strict Transport Security not enabled on Horizon Dashboard == === Summary === Deployers using Horizon for production or internet facing operations should s...")
- 16:14, 21 October 2014 (diff | hist) . . (+1,891) . . N OSSN/OSSN-0034 (Created page with "__NOTOC__ == Restarting memcached loses revoked token list == === Summary === When a cloud is deployed using Memcached as a backend for Keystone tokens, there is a security...")
- 15:59, 21 October 2014 (diff | hist) . . (+1,789) . . N OSSN/OSSN-0033 (Created page with "__NOTOC__ == Some SSL-Enabled connections fail to perform basic certificate checks == === Summary === In many places, OpenStack components use Python 2.x HTTPSConnection to e...")
- 15:57, 21 October 2014 (diff | hist) . . (+1,834) . . N OSSN/OSSN-0032 (Created page with "__NOTOC__ ==Disabling a tenant does not disable a user token == === Summary === When a tenant is disabled in Keystone, tokens that have been issued to that tenant are not in...")
- 15:52, 21 October 2014 (diff | hist) . . (+1,418) . . N OSSN/OSSN-0031 (Created page with "__NOTOC__ == Nova Baremetal is insecure for use in multi-tenant environments == === Summary === Data of previous tenants may be exposed to new ones when using Nova Baremetal...")
- 02:37, 21 October 2014 (diff | hist) . . (+656) . . Meetings/KeystoneMeeting (→Agenda for next meeting)
- 02:44, 16 October 2014 (diff | hist) . . (+640) . . ReleaseNotes/Juno (→Known Issues)
- 22:41, 5 October 2014 (diff | hist) . . (+779) . . Security Notes (→Published Security Notes)
- 19:19, 3 October 2014 (diff | hist) . . (-23) . . Security Notes (→Published Security Notes)
- 19:18, 3 October 2014 (diff | hist) . . (+2,977) . . N OSSN/OSSN-0028 (Created page with "__NOTOC__ == Nova leaks compute host SMBIOS serial number to guests == === Summary === When Nova is using the libvirt virtualization driver, the SMBIOS serial number supplie...")
- 19:31, 29 September 2014 (diff | hist) . . (+275) . . OSSN/OSSN-0029
- 20:24, 26 September 2014 (diff | hist) . . (-7) . . Security Notes (→Published Security Notes)
- 20:23, 26 September 2014 (diff | hist) . . (+3,587) . . N OSSN/OSSN-0030 (Created page with "__NOTOC__ == Bash 'shellshock' bug can lead to code injection vulnerability == === Summary === A bug in the GNU Bash shell (4.3 and lower) exposes a code injection vulnerabi...")
- 02:24, 26 September 2014 (diff | hist) . . (-11) . . Security Notes (→Published Security Notes)
- 02:24, 26 September 2014 (diff | hist) . . (+3,330) . . N OSSN/OSSN-0024 (Created page with "__NOTOC__ == Sensitive data is exposed in log statements by python-keystoneclient == === Summary === Python-keystoneclient is a client tool for the OpenStack Identity API, w...")
- 16:58, 24 September 2014 (diff | hist) . . (-11) . . Security Notes (→Published Security Notes)
- 16:23, 24 September 2014 (diff | hist) . . (+2,512) . . N OSSN/OSSN-0029 (Created page with "__NOTOC__ == Neutron FWaaS rules lack port restrictions when using protocol 'any' == === Summary === A bug in the Neutron FWaaS (Firewall as a Service) code results in iptab...")
- 16:15, 24 September 2014 (diff | hist) . . (0) . . Security Notes (→Published Security Notes)
- 16:13, 16 September 2014 (diff | hist) . . (-11) . . Security Notes (→Published Security Notes)
- 16:13, 16 September 2014 (diff | hist) . . (+3,164) . . N OSSN/OSSN-0027 (Created page with "__NOTOC__ == Neutron ARP cache poisoning vulnerability == === Summary === The Neutron firewall driver 'iptables_firewall' does not prevent ARP cache poisoning, as this drive...")
- 23:52, 15 September 2014 (diff | hist) . . (+124) . . Security Notes (→Published Security Notes)
- 23:50, 15 September 2014 (diff | hist) . . (-15) . . Security Notes (→Published Security Notes)
- 23:46, 15 September 2014 (diff | hist) . . (+11) . . OSSN/OSSN-0020
- 20:16, 5 September 2014 (diff | hist) . . (-12) . . Security Notes (→Published Security Notes)
- 20:15, 5 September 2014 (diff | hist) . . (+2,751) . . OSSN/OSSN-0026
- 19:17, 4 September 2014 (diff | hist) . . (+10) . . Security Notes (→Published Security Notes)
- 19:16, 4 September 2014 (diff | hist) . . (+17) . . Security Notes (→Published Security Notes)
- 19:16, 4 September 2014 (diff | hist) . . (+3,262) . . N OSSN/OSSN-0023 (Created page with "__NOTOC__ == Keystone logs auth tokens in URLs at the INFO log level == === Summary === When a client accesses Keystone using the Identity API version 2, the tokens will be...")
- 14:21, 12 August 2014 (diff | hist) . . (-83) . . Security/Security Note Process (→Wiki)
- 14:15, 12 August 2014 (diff | hist) . . (-12) . . Security/Security Note Process (→Reviewing)
- 14:15, 12 August 2014 (diff | hist) . . (-241) . . Security/Security Note Process (→Templates)
- 19:53, 11 August 2014 (diff | hist) . . (+26) . . Security Notes (→Published Security Notes)
- 13:53, 11 August 2014 (diff | hist) . . (-11) . . Security Notes (→Published Security Notes)
- 13:53, 11 August 2014 (diff | hist) . . (+2,716) . . OSSN/OSSN-0022 (→Soft reboot of instance does not ensure iptables rules are present)
- 22:15, 1 August 2014 (diff | hist) . . (+123) . . Security/Talks (→OpenStack Paris Summit 2014 Talks submitted by OpenStack Security Group)
- 21:28, 25 July 2014 (diff | hist) . . (+330) . . Security/Security Note Process (→Reviewing)
- 21:19, 25 July 2014 (diff | hist) . . (0) . . Security/Security Note Process (→Mailing Lists)
- 20:56, 25 July 2014 (diff | hist) . . (-10) . . Security Notes
- 20:55, 25 July 2014 (diff | hist) . . (+2,727) . . N OSSN/OSSN-0021 (Created page with "__NOTOC__ == Owners of compromised accounts should verify Keystone trusts == === Summary === The Keystone 'trusts' API allows for delegation of privileges to one user on beh...")
(newest | oldest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)