Bug #5907: Any user can forge a fake report - Rudder - Issue Tracker

Actions

Copy link

Bug #5907

closed

User story #6363: Secure agent/server communication

Any user can forge a fake report

Added by Benoît PECCATTE over 9 years ago. Updated 9 months ago.

Status:

Rejected

Priority:

N/A

Assignee:

Category:

Security

Target version:

Ideas (not version specific)

Pull Request:

Severity:

Critical - prevents main use of Rudder | no workaround | data loss | security

UX impact:

User visibility:

First impressions of Rudder

Effort required:

Large

Priority:

Name check:

Fix check:

Regression:

Description

This is a vulnerability.
Any user can write to syslog.
Therefore, any user can create a fake report telling rudder there is a problem (or there is no problem).

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Rudder

Custom queries

Bug #5907

Any user can forge a fake report

Updated by François ARMAND over 9 years ago

Updated by Benoît PECCATTE almost 9 years ago

Updated by François ARMAND about 7 years ago

Updated by Benoît PECCATTE almost 7 years ago

Updated by Alexis Mousset over 5 years ago

Updated by Alexis Mousset over 4 years ago

Updated by Alexis Mousset about 4 years ago

Updated by Alexis Mousset 9 months ago