[openstack-dev] Lack of quota - security bug or not?
Jeremy Stanley
fungi at yuggoth.org
Wed Dec 10 21:12:19 UTC 2014
On 2014-12-10 16:07:35 -0500 (-0500), Jay Pipes wrote:
> On 12/10/2014 04:05 PM, Jeremy Stanley wrote:
> > I think the bigger question is whether the lack of a quota
> > implementation for everything a tenant could ever possibly
> > create is something we should have reported in secret, worked
> > under embargo, backported to supported stable branches, and
> > announced via high-profile security advisories once fixed.
>
> Sure, fine.
Any tips for how to implement new quota features in a way that the
patches won't violate our stable backport policies?
--
Jeremy Stanley
More information about the OpenStack-dev
mailing list