Fuel for OpenStack

insecure setting of postgres password in nailgun env_functions.sh

Bug #1590877 reported by Alex Schultz
256
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Fuel for OpenStack
Confirmed
Medium
Fuel Sustaining
Fuel for OpenStack 10.0
6.0.x
Won't Fix
Medium
Fuel Sustaining
Fuel for OpenStack 6.0-updates
6.1.x
Won't Fix
Medium
Fuel Sustaining
Fuel for OpenStack 6.1-updates
7.0.x
Won't Fix
Medium
Fuel Sustaining
Fuel for OpenStack 7.0-updates
8.0.x
Won't Fix
Medium
Fuel Sustaining
Fuel for OpenStack 8.0-updates
Mitaka
Won't Fix
Medium
Fuel Sustaining
Fuel for OpenStack 9.1

Bug Description

A bug was report to Debian for fuel-web's setting of the pgpass file in nailgun.

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=826803

We should update the the way we create the password file in nailgun to be more secure.

Aleksey Zvyagintsev (azvyagintsev)
Changed in fuel:
status: New → Confirmed
tags: added: module-nailgun
Changed in fuel:
assignee: nobody → Fuel Sustaining (fuel-sustaining-team)
Adam Heczko (aheczko-mirantis)
tags: added: feature-security
Maksim Malchuk (mmalchuk)
no longer affects: fuel/newton
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.