[Openstack-security] [Bug 1404862] [NEW] Horizon SSL configuration vulnerable
Jesse Pretorius
jesse.pretorius at gmail.com
Mon Dec 22 11:55:56 UTC 2014
Public bug reported:
Currently the Apache configuration for Horizon is very simple and
therefore vulnerable to various forms of SSL and TLS attack vectors. The
Qualys SSL test on the default setup results in a C grading. In order to
ensure that best practices are implemented and anyone using os-ansible-
deployment has a secure by default setup, this needs to be addressed.
** Affects: openstack-ansible
Importance: Critical
Assignee: Jesse Pretorius (jesse-pretorius)
Status: In Progress
** Tags: juno-backport-potential security
--
You received this bug notification because you are a member of OpenStack
Security Group, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1404862
Title:
Horizon SSL configuration vulnerable
Status in Ansible playbooks for deploying OpenStack:
In Progress
Bug description:
Currently the Apache configuration for Horizon is very simple and
therefore vulnerable to various forms of SSL and TLS attack vectors.
The Qualys SSL test on the default setup results in a C grading. In
order to ensure that best practices are implemented and anyone using
os-ansible-deployment has a secure by default setup, this needs to be
addressed.
To manage notifications about this bug go to:
https://bugs.launchpad.net/openstack-ansible/+bug/1404862/+subscriptions
More information about the Openstack-security
mailing list