[Openstack-security] [Bug 1404862] Re: Horizon SSL configuration vulnerable
Steve Lewis
steve.lewis at rackspace.com
Fri Jan 23 22:53:09 UTC 2015
** Changed in: openstack-ansible/icehouse
Status: In Progress => Fix Committed
** Changed in: openstack-ansible/juno
Status: In Progress => Fix Committed
--
You received this bug notification because you are a member of OpenStack
Security Group, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1404862
Title:
Horizon SSL configuration vulnerable
Status in Ansible playbooks for deploying OpenStack:
Fix Committed
Status in openstack-ansible icehouse series:
Fix Committed
Status in openstack-ansible juno series:
Fix Committed
Bug description:
Currently the Apache configuration for Horizon is very simple and
therefore vulnerable to various forms of SSL and TLS attack vectors.
The Qualys SSL test on the default setup results in a C grading. In
order to ensure that best practices are implemented and anyone using
os-ansible-deployment has a secure by default setup, this needs to be
addressed.
To manage notifications about this bug go to:
https://bugs.launchpad.net/openstack-ansible/+bug/1404862/+subscriptions
More information about the Openstack-security
mailing list