2012-04-11 14:19:42 |
Jamie Strandboge |
bug |
|
|
added bug |
2012-04-11 14:19:54 |
Jamie Strandboge |
bug task added |
|
horizon (Ubuntu) |
|
2012-04-11 14:20:06 |
Jamie Strandboge |
bug task added |
|
keystone (Ubuntu) |
|
2012-04-11 14:20:15 |
Jamie Strandboge |
nominated for series |
|
Ubuntu Precise |
|
2012-04-11 14:20:15 |
Jamie Strandboge |
bug task added |
|
horizon (Ubuntu Precise) |
|
2012-04-11 14:20:15 |
Jamie Strandboge |
bug task added |
|
keystone (Ubuntu Precise) |
|
2012-04-11 14:20:22 |
Jamie Strandboge |
keystone (Ubuntu Precise): status |
New |
Triaged |
|
2012-04-11 14:20:24 |
Jamie Strandboge |
horizon (Ubuntu Precise): status |
New |
Triaged |
|
2012-04-11 14:20:28 |
Jamie Strandboge |
keystone (Ubuntu Precise): importance |
Undecided |
High |
|
2012-04-11 14:20:31 |
Jamie Strandboge |
keystone (Ubuntu Precise): milestone |
|
ubuntu-12.04 |
|
2012-04-11 14:20:34 |
Jamie Strandboge |
horizon (Ubuntu Precise): milestone |
|
ubuntu-12.04 |
|
2012-04-11 14:20:36 |
Jamie Strandboge |
horizon (Ubuntu Precise): importance |
Undecided |
High |
|
2012-04-11 14:20:45 |
Jamie Strandboge |
bug |
|
|
added subscriber Ubuntu Security Team |
2012-04-11 14:24:47 |
Jamie Strandboge |
description |
Much of OpenStack is hard-coded to use http instead of https. Of particular interest is keystone which is the identity service for OpenStack. https://wiki.ubuntu.com/PrecisePangolin/ReleaseNotes/UbuntuCloud should state that accessing OpenStack over an unprotected network may expose credentials and other information. This is true (at least) when:
* keystone is on a separate server from the other OpenStack components
* horizon (the OpenStack Dashboard) is on a different system than keystone
* users access OpenStack remotely
Adding horizon and keystone tasks. |
Much of OpenStack is hard-coded to use http instead of https. Of particular interest is keystone which is the identity service for OpenStack. https://wiki.ubuntu.com/PrecisePangolin/ReleaseNotes/UbuntuCloud should state that accessing OpenStack over an unprotected network may expose credentials and other information. This is true (at least) when:
* keystone is on a separate server from the other OpenStack components
* horizon (the OpenStack Dashboard) is on a different system than keystone
* users access OpenStack remotely
* users access horizon (the OpenStack dashboard) over http
Adding horizon and keystone tasks. |
|
2012-04-25 00:30:54 |
Nobuto Murata |
bug |
|
|
added subscriber Nobuto MURATA |
2012-04-25 13:41:58 |
Dave Walker |
ubuntu-release-notes: status |
New |
Fix Committed |
|
2012-04-26 11:21:05 |
Andy Whitcroft |
ubuntu-release-notes: status |
Fix Committed |
Fix Released |
|
2012-10-03 15:13:36 |
Adrien Cunin |
bug |
|
|
added subscriber Adrien Cunin |
2012-10-03 16:47:42 |
Dave Walker |
bug |
|
|
added subscriber Ubuntu Server Release Tracking |
2012-10-09 16:06:16 |
James Page |
horizon (Ubuntu): assignee |
|
James Page (james-page) |
|
2012-10-09 16:06:18 |
James Page |
keystone (Ubuntu): assignee |
|
James Page (james-page) |
|
2012-10-09 16:07:12 |
James Page |
keystone (Ubuntu Precise): status |
Triaged |
Fix Released |
|
2012-10-09 16:07:14 |
James Page |
horizon (Ubuntu Precise): status |
Triaged |
Fix Released |
|
2012-10-12 15:40:02 |
James Page |
keystone (Ubuntu): status |
Triaged |
Fix Released |
|
2012-10-12 15:40:08 |
James Page |
horizon (Ubuntu): status |
Triaged |
Fix Released |
|