Add option to do remote host SSL cert verification in nova-objectstore
Bug #885165 reported by
David
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Compute (nova) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
This bug is related to another bug which I am about to report.
In nova/image/s3.py the _conn static method of the S3ImageService class passes in is_secure=False,
when creating a new boto.s3.
description: | updated |
summary: |
- Disables remote host SSL certificate verification during image retrieval + Add option to do remote host SSL cert verification in nova-objectstore |
visibility: | private → public |
Changed in nova: | |
status: | Confirmed → Triaged |
Changed in nova: | |
importance: | Medium → Wishlist |
tags: | added: security |
security vulnerability: | yes → no |
To post a comment you must log in.
Yes, is there a good reason not to set is_secure=True ?