tripleo

  1. Bug #1516027
  2. Comment #7

Comment 7 for bug 1516027

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to python-tripleoclient (stable/liberty)

Reviewed: https://review.openstack.org/268131
Committed: https://git.openstack.org/cgit/openstack/python-tripleoclient/commit/?id=521dfbe91bdb7db483d861b8d62e0821d6f16ada
Submitter: Jenkins
Branch: stable/liberty

commit 521dfbe91bdb7db483d861b8d62e0821d6f16ada
Author: Dougal Matthews <email address hidden>
Date: Tue Dec 8 16:40:39 2015 +0000

    Set NeutronMetadataProxySharedSecret

    This patch uses the standard password generation functionality to
    randomly set the NeutronMetadataProxySharedSecret parameter.

    Without this parameter, Neutron has a blank value for it's shared
    secret. This value is used to to prevent spoofing, thus the
    default value of "unset" is bad. This exposes a potential attack
    vector.

    Closes-Bug: #1516027
    Change-Id: Ifb34b43fdedc55ad220df358c3ccc31e3c2e7c14
    (cherry picked from commit 071968841692bffdd44c0eb34bf01df0e291d6b3)