Restrict Memcached to only work on TCP and localhost.
The restriction is made at the application and firewall levels.
It will prevent DDoS amplification attacks using memcached.
Change-Id: I8072cc842291d133fde9fdfe9e8ad432623a8ef2
Related-Bug: #1754607
(cherry picked from commit 74fc85c507fc298828797c51255cee059a9684fc)
Reviewed: https:/ /review. openstack. org/551389 /git.openstack. org/cgit/ openstack/ instack- undercloud/ commit/ ?id=eff22b403af 2a1c1a011d995ec 1e58729ed41b36
Committed: https:/
Submitter: Zuul
Branch: stable/pike
commit eff22b403af2a1c 1a011d995ec1e58 729ed41b36
Author: Emilien Macchi <email address hidden>
Date: Fri Mar 9 19:55:13 2018 +0100
[CVE- 2018-1000115] memcached: restrict to TCP & localhost
https:/ /access. redhat. com/security/ cve/cve- 2018-1000115
Restrict Memcached to only work on TCP and localhost.
The restriction is made at the application and firewall levels.
It will prevent DDoS amplification attacks using memcached.
Change-Id: I8072cc842291d1 33fde9fdfe9e8ad 432623a8ef2 828797c51255cee 059a9684fc)
Related-Bug: #1754607
(cherry picked from commit 74fc85c507fc298