[Openstack] Potential security issue with CHAP

Avishay Traeger AVISHAY at il.ibm.com
Thu Nov 29 08:50:40 UTC 2012

Previous message: [Openstack] Is there any way to migrate the Instance between the projects/tenants?
Next message: [Openstack] Potential security issue with CHAP
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi all,
Currently, CHAP secrets are managed by Cinder, and passed to Nova for use
when attaching volumes.  This means that unless the communication is
encrypted, or a separate trusted network is used, CHAP secrets can be
sniffed on the wire.
Opinions?

Thanks,
Avishay

Previous message: [Openstack] Is there any way to migrate the Instance between the projects/tenants?
Next message: [Openstack] Potential security issue with CHAP
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Openstack mailing list