[Rocky] Backport ssh lockdown
Bug #1826829 reported by
Cédric Jeanneret
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
Medium
|
Cédric Jeanneret |
Bug Description
Hello,
We need to backport the following patches from Stein to Rocky (and, eventually, Queens):
- https:/
- https:/
- https:/
Namely, this means:
* tripleo-
* puppet-tripleo: cherry-pick -x 9bdb8199cc394bd
This will allow to avoid a world-open SSH service, reducing attack surface.
Cheers,
C.
tags: | added: tech-debt |
Changed in tripleo: | |
status: | Triaged → Fix Committed |
Changed in tripleo: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Related fix proposed to branch: stable/rocky /review. opendev. org/656242
Review: https:/