Comment 18 for bug 1734320
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote | #18 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
Thank you Armando for this thorough investigation.
You mention console access as a requirement, but couldn't the user run nohup task in the background to capture the traffic, and then retrieve the data later?
To answer your last question, if this is triaged as B2, then we would subscribe the ossg-coresec group so that an OSSN could be prepared and may be sent to the downstream stakeholders through the embargo-notice mailing list before disclosing this bug. Though the live migration case may be bad enough (e.g.: for operator going through that process often) that we may want to issue an advisory instead.
Please feel free to subscribe more neutron or nova developers to this bug, at least to check for unforeseen scenarios.