OpenStack Security Guide Documentation

ossp-security-documentation:master

  1. Git
  2. lp:ossp-security-documentation
  3. master
Last commit made on 2019-04-17
Get this branch:
git clone -b master https://git.launchpad.net/ossp-security-documentation

Branch merges

Branch information

Name:
master
Repository:
lp:ossp-security-documentation

Recent commits

d011989... by Zuul <email address hidden>

Merge "Update permission checks to include top level directory checks"

a4a24e3... by Chris MacNaughton

Update nova-compute keystone validation

In Ocata, auth_strategy was moved into the [api] namespace,
making [api] or [DEFAULT] a valid section to place this
option in.

Change-Id: I6ec0f4fb0cc24f537defec78bfcdf35147b4ba23

882ec82... by Chris MacNaughton

Update permission checks to include top level directory checks

By expanding the scope of the checks, we can maintain a higher
level of security by ensuring that newly created files created
in project configuration folders are restricted in the same
way as those listed, without hoping that projects update these
checks when they create these files.

For example, making /etc/keystone/keystone.conf have ownership
settings of root:keystone with permissions of 640 is practically
the same as giving /etc/keystone settings of root:keystone with
permissions of 750 as the same user restrictions apply.

Change-Id: I53d395e0d17bdfbdb08b71431b0af29506b94aa9

6a64a48... by Chris MacNaughton

Resolve Sphinx issues with syntax highlighting

A new revision of Sphinx has introduced stricter requirements
in parsing console and json types

Change-Id: I99cb9fb64bc134a2a78e82d95028f744f40634b8

c8d81b2... by Scott Solkhon

Replacing Keystone deprecated configuration auth_uri with www_authenticate_uri

The auth_uri option is deprecated in favor of www_authenticate_uri and
will be removed in the Stien releasee and silently ignored in
the future. This change updates Keystone's auth_uri to
www_authenticate_uri in the security checklist docs.

Change-Id: I942db5fff874df20ce77b0f5741925e4cea8d859

9375908... by Brian Haley <email address hidden>

Update neutron quota_driver path

It is now at neutron.db.quota.driver.DbQuotaDriver

Change-Id: I4f3f4979cf172333344dbf2b527f4e5889905294

9b9bf5d... by Zuul <email address hidden>

Merge "fix tox python3 overrides"

8245244... by OpenStack Proposal Bot <email address hidden>

Imported Translations from Zanata

For more information about this automatic import see:
https://docs.openstack.org/i18n/latest/reviewing-translation-import.html

Change-Id: I58964cd14bfc22d278b701975e35dde368c91dd8

2e477a0... by OpenStack Proposal Bot <email address hidden>

Imported Translations from Zanata

For more information about this automatic import see:
https://docs.openstack.org/i18n/latest/reviewing-translation-import.html

Change-Id: I28cfc8d87e97c78b303a3fb4ccffc57dcb6ff2e0

5ddb0d4... by OpenStack Proposal Bot <email address hidden>

Updated from openstack-manuals

Change-Id: Ia372537dc456fca9bfaf2efdd175906fcfa88879