Actions
Bug #15236
closed
Bug #14866: It is possible to download policies from any Windows node knowing its id by getting a forged inventory accepted
New node inventories without certificate aren't accepted anymore
Status:
Released
Priority:
N/A
Assignee:
Category:
Web - Nodes & inventories
Target version:
Pull Request:
Severity:
Critical - prevents main use of Rudder | no workaround | data loss | security
UX impact:
User visibility:
Getting started - demo | first install | Technique editor and level 1 Techniques
Effort required:
Priority:
92
Name check:
To do
Fix check:
Checked
Regression:
Description
When a new node without a certificate sends its inventory, rudder refuse to process it with the message:
[2019-07-17 08:31:57] INFO inventory-processing - Watch new inventory file 'agent1-baded9c8-902e-4404-96c1-278acca64e3a.ocs' with signature available: process. [2019-07-17 08:31:57] ERROR inventory-processing - Error when trying to process inventory 'agent1-baded9c8-902e-4404-96c1-278acca64e3a.ocs' <- Error when trying to check inventory key for Node 'baded9c8-902e-4404-96c1-278acca64e3a' <- Could not find Node baded9c8-902e-4404-96c1-278acca64e3a
Updated by 
Updated by 
Updated by
Actions