Comment 33 for bug 1998789
Revision history for this message
| Mustafa Kemal Gilor (mustafakemalgilor) wrote | #33 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
4d1350f
(Get the code!)
Hi Andreas,
Thanks for the comments!
"This sounds like it should go into the focal-security pocket, as well as updates, no?"
IMO, because the consumers of the LDAP can be external-facing (e.g. Horizon, a.k.a OpenStack Dashboard), it can be considered a security bug. Still, I'll leave the real assessments to the security experts.
"Regarding the test plan, wouldn't an iptables DROP rule to the LDAP server also trigger an exception, and the bug?"
Yes, an iptables DROP rule should do the trick. Probably need to put it into place after the connection is established, though.