[Openstack-security] [openstack/python-novaclient] SecurityImpact review request change Ib0ccaf5517e1bbdf723748dbc192d2565f5780fc
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Tue Oct 15 23:49:55 UTC 2013
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/50864
Log:
commit 3f153182aec7997999a9cc510c4d9c056d0aaa96
Author: Joe Gordon <joe.gordon0 at gmail.com>
Date: Thu Oct 10 08:31:37 2013 +0000
Don't use EncryptedKeyring backend use PlaintextKeyring instead
If EncryptedKeyring, there is no long running keyring and a
password is required every time novaclient is run. But we already
keep the keystone password in a plaintext file so this results
in worse usability and no extra security.
SecurityImpact
Change-Id: Ib0ccaf5517e1bbdf723748dbc192d2565f5780fc
More information about the Openstack-security
mailing list