DNS available externally on provider network
Bug #1798351 reported by
Ian Kumlien
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Security Advisory |
Won't Fix
|
Undecided
|
Unassigned | ||
neutron |
New
|
Undecided
|
Unassigned |
Bug Description
DNS is open for everyone on our external provider network and this can be used to do a amplification attack.
Shouldn't this access at least be filtered for external parties?
Tested on openstack pike
description: | updated |
Changed in ossa: | |
status: | Incomplete → Won't Fix |
information type: | Private Security → Public |
To post a comment you must log in.
Since this report concerns a possible security risk, an incomplete security advisory task has been added while the core security reviewers for the affected project or projects confirm the bug and discuss the scope of any vulnerability along with potential solutions.