devstack

  1. Bug #1168252
  2. Comment #21

Comment 21 for bug 1168252

Revision history for this message
In , Glsamaker (glsamaker) wrote :

CVE-2013-1977 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1977):
  OpenStack devstack uses world-readable permissions for keystone.conf, which
  allows local users to obtain sensitive information such as the LDAP password
  and admin_token secret by reading the file.