Easily misinterpreted context - Chapter 31. Case studies: messaging in OpenStack Security Guide
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-manuals |
Fix Released
|
Medium
|
KATO Tomoyuki |
Bug Description
Metaphorical use of the term horizon could lead to misinterpretation. Essentially, a reader could assume that this is referencing the Horizon (Dashboard) component of OpenStack:
There are a number of solutions on the horizon to fix this, with several proposals for message signing and encryption making their way through the OpenStack development process.
Potential revision:
There are a number of solutions anticipated in the near future, with several proposals for message signing and encryption making their way through the OpenStack development process.
Awkward wording and missing comma:
In this case Alice's controls mimic those Bob has deployed for the public cloud.
Can be written as:
In this case, the controls that Bob has deployed for his public cloud will be mimicked by Alice.
Multiple incomplete sentences:
Bob assumes that at some point infrastructure or networks underpinning the Compute service may become compromised. Due to this, he recognizes the importance of locking down access to the message queue. To do this Bob deploys his RabbitMQ servers with SSL and X.509 client auth for access control. This in turn limits the capabilities of an attacker who has compromised a system that does not have queue access.
Proposed revision:
Bob assumes the infrastructure or networks underpinning the Compute service could become compromised, therefore he recognizes the importance of hardening the system by restricting access to the message queue. In order to accomplish this task Bob deploys his RabbitMQ servers with SSL and X.509 client authorization for access control. Hardening activities assists in limiting the capabilities of a malicious user that has compromised the system by disallowing queue access, provided that this user does not have valid credentials to override the controls.
-------
Built: 2014-07-17T19:36:00 00:00
git SHA: 5ce4ae8b6c47080
URL: http://
source File: file:/home/
xml:id: case-studies-
description: | updated |
Changed in openstack-manuals: | |
status: | New → Confirmed |
importance: | Undecided → Medium |
Fix proposed to branch: master /review. openstack. org/111902
Review: https:/