Restrict Memcached to only work on TCP and internal_api network.
The restriction is made at the application and firewall levels.
It will prevent DDoS amplification attacks using memcached.
Change-Id: I8fb81d7f3938b04ff7652e30de35a1ec23ae723d
Related-Bug: #1754607
(cherry picked from commit d373df5ff89acaca762623fb3920b42778062f00)
Reviewed: https:/ /review. openstack. org/551387 /git.openstack. org/cgit/ openstack/ tripleo- heat-templates/ commit/ ?id=067941d2113 2db2c1fd2c51cc2 67af3dbcf49622
Committed: https:/
Submitter: Zuul
Branch: stable/newton
commit 067941d21132db2 c1fd2c51cc267af 3dbcf49622
Author: Emilien Macchi <email address hidden>
Date: Fri Mar 9 11:22:37 2018 +0100
[CVE- 2018-1000115] memcached: restrict to TCP & internal_api network
https:/ /access. redhat. com/security/ cve/cve- 2018-1000115
Restrict Memcached to only work on TCP and internal_api network.
The restriction is made at the application and firewall levels.
It will prevent DDoS amplification attacks using memcached.
Change-Id: I8fb81d7f3938b0 4ff7652e30de35a 1ec23ae723d a762623fb3920b4 2778062f00)
Related-Bug: #1754607
(cherry picked from commit d373df5ff89acac