Fuel for OpenStack

MTA shouldn't listen on network

Bug #1603916 reported by Maksim Malchuk on 2016-07-18

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Fuel for OpenStack	Fix Committed	High	Dmitry Ilyin	Fuel for OpenStack 10.0
	Mitaka	Fix Released	High	Maksim Malchuk	Fuel for OpenStack 9.1

Bug Description

by default the MTA (Postfix in our case) is exposed SMTP port on the network
it should be configured to Local delivery only and shouldn't listen on the network at all
need to backport partially the change: https://review.openstack.org/#/c/342932/

Tags:

Dmitry Pyzhov (dpyzhov) on 2016-07-18

no longer affects:	fuel/newton
Changed in fuel:
milestone:	9.1 → 10.0
status:	New → Invalid

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-07-18: Fix proposed to fuel-library (stable/mitaka)

Fix proposed to branch: stable/mitaka
Review: https://review.openstack.org/343836

Maksim Malchuk (mmalchuk) on 2016-07-18

tags:

added: team-bugfix

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-07-19: Fix merged to fuel-library (stable/mitaka)

Reviewed: https://review.openstack.org/343836
Committed: https://git.openstack.org/cgit/openstack/fuel-library/commit/?id=762f32394d0796ab79b0ab88da01842f59423d7a
Submitter: Jenkins
Branch: stable/mitaka

commit 762f32394d0796ab79b0ab88da01842f59423d7a
Author: Maksim Malchuk <email address hidden>
Date: Fri Jul 15 18:40:56 2016 +0300

Configure the Postfix to Local delivery only mode

This change configures Postfix to Local delivery mode only.
Partially cherry-picked from I0d47a102ed36b6ab69874cd92735cd46dcf5f593

    Change-Id: I0d47a102ed36b6ab69874cd92735cd46dcf5f593
    Closes-Bug: 1603916
    Co-Authored-By: Alex Schultz <email address hidden>
    Signed-off-by: Maksim Malchuk <email address hidden>

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-07-27: Related fix proposed to fuel-qa (stable/mitaka)

Related fix proposed to branch: stable/mitaka
Review: https://review.openstack.org/347969

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-07-28: Related fix merged to fuel-qa (stable/mitaka)

Reviewed: https://review.openstack.org/347969
Committed: https://git.openstack.org/cgit/openstack/fuel-qa/commit/?id=bc76256713e9fe8e10e6850663b46305259e1101
Submitter: Jenkins
Branch: stable/mitaka

commit bc76256713e9fe8e10e6850663b46305259e1101
Author: Alex Schultz <email address hidden>
Date: Wed Jul 27 11:23:13 2016 -0600

Update expected postfix logs

    With the locking down of postfix, we no longer may end up with local
    mail messages. We should only look for the main postfix logs as the
    others will not be present if no messages are being sent.

    Change-Id: I36e74ebe66d1ee3b70336f83b74f18d189b6c477
    Closes-Bug: #1606900
    Related-Bug: #1603916

tags:

added: in-stable-mitaka

Andrey Lavrentyev (alavrentyev) on 2016-07-29

tags:

added: on-verification

Revision history for this message

Andrey Lavrentyev (alavrentyev) wrote on 2016-08-01:

Verified on 9.1 snapshot #76

[root@nailgun ~]# shotgun2 short-report
cat /etc/fuel_build_id:
495
cat /etc/fuel_build_number:
495
cat /etc/fuel_release:
9.0
cat /etc/fuel_openstack_version:
mitaka-9.0
rpm -qa | egrep 'fuel|astute|network-checker|nailgun|packetary|shotgun':
fuel-library9.0-9.0.0-1.mos8495.noarch
rubygem-astute-9.0.0-1.mos753.noarch
fuel-release-9.0.0-1.mos6349.noarch
fuel-bootstrap-cli-9.0.0-1.mos285.noarch
fuel-provisioning-scripts-9.0.0-1.mos8748.noarch
shotgun-9.0.0-1.mos90.noarch
python-fuelclient-9.0.0-1.mos325.noarch
fuel-9.0.0-1.mos6349.noarch
fuel-openstack-metadata-9.0.0-1.mos8748.noarch
python-packetary-9.0.0-1.mos142.noarch
nailgun-mcagents-9.0.0-1.mos753.noarch
fuel-utils-9.0.0-1.mos8495.noarch
fuel-setup-9.0.0-1.mos6349.noarch
network-checker-9.0.0-1.mos74.x86_64
fuel-agent-9.0.0-1.mos285.noarch
fuel-ui-9.0.0-1.mos2717.noarch
fuel-misc-9.0.0-1.mos8495.noarch
fuel-ostf-9.0.0-1.mos938.noarch
fuel-notify-9.0.0-1.mos8495.noarch
fuel-nailgun-9.0.0-1.mos8748.noarch
fuelmenu-9.0.0-1.mos274.noarch
fuel-mirror-9.0.0-1.mos142.noarch
fuel-migrate-9.0.0-1.mos8495.noarch

MOS_CENTOS_OS_MIRROR_ID: os-2016-06-23-135731
MOS_CENTOS_PROPOSED_MIRROR_ID: proposed-2016-07-29-200321
MOS_CENTOS_UPDATES_MIRROR_ID: updates-2016-06-23-135916
MOS_CENTOS_SECURITY_MIRROR_ID: security-2016-06-23-140002
MOS_CENTOS_HOLDBACK_MIRROR_ID: holdback-2016-06-23-140047
MOS_CENTOS_HOTFIX_MIRROR_ID: hotfix-2016-07-18-162958
MOS_UBUNTU_MIRROR_ID: 9.0-2016-07-29-200321
UBUNTU_MIRROR_ID: ubuntu-2016-07-30-170657
CENTOS_MIRROR_ID: centos-7.2.1511-2016-05-31-083834

tags:

removed: on-verification

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-01-17: Fix proposed to fuel-library (stable/newton)

Fix proposed to branch: stable/newton
Review: https://review.openstack.org/421354

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-01-17: Fix proposed to fuel-library (master)

Fix proposed to branch: master
Review: https://review.openstack.org/421413

Changed in fuel:
assignee:	Maksim Malchuk (mmalchuk) → Dmitry Ilyin (idv1985)
status:	Invalid → In Progress

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-01-18: Fix merged to fuel-library (master)

Reviewed: https://review.openstack.org/421413
Committed: https://git.openstack.org/cgit/openstack/fuel-library/commit/?id=2c0ad97041f18ae134513fa167242e83944cb994
Submitter: Jenkins
Branch: master

commit 2c0ad97041f18ae134513fa167242e83944cb994
Author: Maksim Malchuk <email address hidden>
Date: Fri Jul 15 18:40:56 2016 +0300

[sync/mitaka] Configure the Postfix to Local delivery only mode

This change configures Postfix to Local delivery mode only.
Partially cherry-picked from I0d47a102ed36b6ab69874cd92735cd46dcf5f593

    Change-Id: Ic97c82ec9b97cf0d09b11e3c6ce691aadc3624eb
    Closes-Bug: 1603916
    Co-Authored-By: Alex Schultz <email address hidden>
    Signed-off-by: Maksim Malchuk <email address hidden>

Changed in fuel:
status:	In Progress → Fix Committed

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-01-18: Fix proposed to fuel-library (stable/newton)

Fix proposed to branch: stable/newton
Review: https://review.openstack.org/421971

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-01-19: Fix merged to fuel-library (stable/newton)

#10

Reviewed: https://review.openstack.org/421971
Committed: https://git.openstack.org/cgit/openstack/fuel-library/commit/?id=765d3ed78e64906b2586fbd7586fd9006ad83329
Submitter: Jenkins
Branch: stable/newton

commit 765d3ed78e64906b2586fbd7586fd9006ad83329
Author: Maksim Malchuk <email address hidden>
Date: Fri Jul 15 18:40:56 2016 +0300

[sync/mitaka] Configure the Postfix to Local delivery only mode

This change configures Postfix to Local delivery mode only.
Partially cherry-picked from I0d47a102ed36b6ab69874cd92735cd46dcf5f593

    Change-Id: Ic97c82ec9b97cf0d09b11e3c6ce691aadc3624eb
    Closes-Bug: 1603916
    Co-Authored-By: Alex Schultz <email address hidden>
    Signed-off-by: Maksim Malchuk <email address hidden>

tags:

added: in-stable-newton

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-01-19: Change abandoned on fuel-library (stable/newton)

#11

Change abandoned by Dmitry Ilyin (<email address hidden>) on branch: stable/newton
Review: https://review.openstack.org/421354

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2017-02-27: Fix included in openstack/fuel-library 11.0.0.0rc1

#12

This issue was fixed in the openstack/fuel-library 11.0.0.0rc1 release candidate.

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.