[Openstack-security] eventlet_backdoor.py
Kurt Seifried
kseifried at redhat.com
Mon Feb 10 16:46:44 UTC 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 02/10/2014 09:42 AM, Thomas Biege wrote:
> Hi, are there plans to rename the eventlet_backdoor.py module used
> in the OpenStack code at various places?
>
> The naming is bad and creates the impression that a backdoor is in
> OpenStack. In the current situation it might be an issue the
> press/blogs are waiting for.
>
> Even if renamed the openstack documentation should make it very
> clear what happens if the admins switches on this option.
>
> What do you think?
>
> Best, Thomas
+1, this is a rather unfortunate file name, changing it is a good idea.
- --
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=KMxl
-----END PGP SIGNATURE-----
More information about the Openstack-security
mailing list