[Openstack-security] [Bug 1404862] Re: Horizon SSL configuration vulnerable
Darren Birkett
1404862 at bugs.launchpad.net
Wed Jan 14 13:09:22 UTC 2015
** Changed in: openstack-ansible/juno
Milestone: None => 10.1.2
** Changed in: openstack-ansible/icehouse
Milestone: None => 9.0.6
** Changed in: openstack-ansible/icehouse
Status: New => In Progress
--
You received this bug notification because you are a member of OpenStack
Security Group, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1404862
Title:
Horizon SSL configuration vulnerable
Status in Ansible playbooks for deploying OpenStack:
Fix Committed
Status in openstack-ansible icehouse series:
In Progress
Status in openstack-ansible juno series:
In Progress
Bug description:
Currently the Apache configuration for Horizon is very simple and
therefore vulnerable to various forms of SSL and TLS attack vectors.
The Qualys SSL test on the default setup results in a C grading. In
order to ensure that best practices are implemented and anyone using
os-ansible-deployment has a secure by default setup, this needs to be
addressed.
To manage notifications about this bug go to:
https://bugs.launchpad.net/openstack-ansible/+bug/1404862/+subscriptions
More information about the Openstack-security
mailing list