Project

General

Profile

Actions

Bug #6600

closed

User story #6589: Improve Rudder security in 3.1: Inventory signature and security, SELinux compliance

Architecture #6356: Inventory endpoint should validate agent signature

Cannot modify root server inventory after new install

Added by Vincent MEMBRÉ almost 9 years ago. Updated almost 9 years ago.

Status:
Released
Priority:
1
Category:
Web - Nodes & inventories
Target version:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
Name check:
Fix check:
Regression:

Description

We put a non valid key into rudder server root inventory when initializing rudder-webapp ldap

So when we want to check its signature we check with an invalid value "Currently Not Used"

This will fail the inventory for Rudder server root silently

we should:

  • Remove the false key value
  • Handle that error case
Actions #1

Updated by Vincent MEMBRÉ almost 9 years ago

  • Status changed from New to In progress
Actions #2

Updated by Vincent MEMBRÉ almost 9 years ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Vincent MEMBRÉ to François ARMAND
  • Pull Request set to https://github.com/Normation/ldap-inventory/pull/65
Actions #3

Updated by François ARMAND almost 9 years ago

  • Description updated (diff)
Actions #4

Updated by Vincent MEMBRÉ almost 9 years ago

  • Status changed from Pending technical review to Pending release
  • % Done changed from 0 to 100
Actions #6

Updated by Vincent MEMBRÉ almost 9 years ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 3.1.0~beta1 which were released today.

Actions

Also available in: Atom PDF