September 2014 Archives by thread

• Messages sorted by: [ subject ] [ author ] [ date ]
• More info on this list...

Starting: Mon Sep 1 17:13:58 UTC 2014
Ending: Tue Sep 30 17:38:15 UTC 2014
Messages: 258

• [Openstack-security] [Bug 1252519] Re: Live migration failed because of file permission changed   Hendrik Frenzel
  • [Openstack-security] [Bug 1252519] Re: Live migration failed because of file permission changed   Dylan
  • [Openstack-security] [Bug 1252519] Re: Live migration failed because of file permission changed   Hendrik Frenzel
  • [Openstack-security] [Bug 1252519] Re: Live migration failed because of file permission changed   Maurice Leeflang
  • [Openstack-security] [Bug 1252519] Re: Live migration failed because of file permission changed   Facundo Maldonado
  • [Openstack-security] [Bug 1252519] Re: Live migration failed because of file permission changed   Hendrik Frenzel
  • [Openstack-security] [Bug 1252519] Re: Live migration failed because of file permission changed   Maurice Leeflang
• [Openstack-security] [Bug 1274034] Re: Neutron firewall anti-spoofing does not prevent ARP poisoning   Tim Kelsey
  • [Openstack-security] [Bug 1274034] Re: Neutron firewall anti-spoofing does not prevent ARP poisoning   Tim Kelsey
  • [Openstack-security] [Bug 1274034] Re: Neutron firewall anti-spoofing does not prevent ARP poisoning   Tim Kelsey
  • [Openstack-security] [Bug 1274034] Re: Neutron firewall anti-spoofing does not prevent ARP poisoning   Nathan Kinder
• [Openstack-security] [openstack/nova] SecurityImpact review request change I871af4018f99ddfcc8408708bdaaf480088ac477   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I871af4018f99ddfcc8408708bdaaf480088ac477   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I871af4018f99ddfcc8408708bdaaf480088ac477   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I871af4018f99ddfcc8408708bdaaf480088ac477   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I871af4018f99ddfcc8408708bdaaf480088ac477   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1278843] Re: Neutron doesn't report using a stale CA certificate   Maruti Kamat
  • [Openstack-security] [Bug 1278843] Re: Neutron doesn't report using a stale CA certificate   Maruti Kamat
• [Openstack-security] [openstack/nova] SecurityImpact review request change I64859ad01120782fb17308aac3abb125597c3ea2   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I64859ad01120782fb17308aac3abb125597c3ea2   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1362343] Re: weak digest algorithm for PKI   Dolph Mathews
  • [Openstack-security] [Bug 1362343] Re: weak digest algorithm for PKI   Dolph Mathews
  • [Openstack-security] [Bug 1362343] Re: weak digest algorithm for PKI   OpenStack Infra
• [Openstack-security] [Bug 1316271] Re: Network Security: VM hosts can SSH to compute node   OpenStack Infra
  • [Openstack-security] [Bug 1316271] Re: Network Security: VM hosts can SSH to compute node   David Hill
  • [Openstack-security] [Bug 1316271] Re: Network Security: VM hosts can SSH to compute node   Sean Dague
• [Openstack-security] [Bug 1341954] Fix proposed to cinder (stable/icehouse)   OpenStack Infra
• [Openstack-security] [Bug 1341954] Fix proposed to cinder (stable/havana)   OpenStack Infra
• [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   Thierry Carrez
  • [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   Nathan Kinder
  • [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   OpenStack Infra
  • [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   Carl Baldwin
  • [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   OpenStack Infra
  • [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   OpenStack Infra
  • [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   Cedric Brandily
  • [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   OpenStack Infra
  • [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   Cedric Brandily
  • [Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated   Adam Gandelman
• [Openstack-security] [Bug 1329737] Re: Valid tokens may remain after token's user was deleted   Dolph Mathews
• [Openstack-security] [Bug 1158328] Re: passwords in config files stored in plaintext   Sean Dague
  • [Openstack-security] [Bug 1158328] Re: passwords in config files stored in plaintext   Glenn Ferguson
  • [Openstack-security] [Bug 1158328] Re: passwords in config files stored in plaintext   Daniel Berrange
  • [Openstack-security] [Bug 1158328] Re: passwords in config files stored in plaintext   Jeremy Stanley
  • [Openstack-security] [Bug 1158328] Re: passwords in config files stored in plaintext   Duncan Thomas
  • [Openstack-security] [Bug 1158328] Re: passwords in config files stored in plaintext   John Griffith
• [Openstack-security] [Bug 1274034] Fix proposed to neutron (master)   OpenStack Infra
  • [Openstack-security] [Bug 1274034] Fix proposed to neutron (master)   OpenStack Infra
• [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Thierry Carrez
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Davanum Srinivas (DIMS)
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   OpenStack Infra
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Davanum Srinivas (DIMS)
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Davanum Srinivas (DIMS)
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Doug Hellmann
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   OpenStack Infra
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Sean Dague
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   OpenStack Infra
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   satyadev svn
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Alan Pevec
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Alan Pevec
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Davanum Srinivas (DIMS)
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Adam Gandelman
  • [Openstack-security] [Bug 1341954] Re: suds client subject to cache poisoning by local attacker   Adam Gandelman
• [Openstack-security] [Bug 1337349] Re: Nova qemu hypervisor host smbios serial number is leaked to guest   Nathan Kinder
  • [Openstack-security] [Bug 1337349] Re: Nova qemu hypervisor host smbios serial number is leaked to guest   Thierry Carrez
• [Openstack-security] [Bug 1343657] Re: Shell Injection in backup strategies   Nathan Kinder
  • [Openstack-security] [Bug 1343657] Re: Shell Injection in backup strategies   Travis McPeak
  • [Openstack-security] [Bug 1343657] Re: Shell Injection in backup strategies   Nikhil Manchanda
  • [Openstack-security] [Bug 1343657] Re: Shell Injection in backup strategies   Travis McPeak
  • [Openstack-security] [Bug 1343657] Re: Shell Injection in backup strategies   Amrith
  • [Openstack-security] [Bug 1343657] Re: Shell Injection in backup strategies   Nathan Kinder
• [Openstack-security] [Bug 1350766] Re: Race condition: compute intermittently corrupts base images on download from glance   melanie witt
  • [Openstack-security] [Bug 1350766] Re: Race condition: compute intermittently corrupts base images on download from glance   OpenStack Infra
  • [Openstack-security] [Bug 1350766] Re: Race condition: compute intermittently corrupts base images on download from glance   Jeremy Stanley
  • [Openstack-security] [Bug 1350766] Re: Race condition: compute intermittently corrupts base images on download from glance   Michael Steffens
  • [Openstack-security] [Bug 1350766] Re: Race condition: compute intermittently corrupts base images on download from glance   Sean Dague
  • [Openstack-security] [Bug 1350766] Re: Race condition: compute intermittently corrupts base images on download from glance   OpenStack Infra
• [Openstack-security] [Bug 1274034] Change abandoned on neutron (master)   OpenStack Infra
• [Openstack-security] [Bug 1365712] Re: Command Execution Possible Through Config File Tampering   Jeremy Stanley
  • [Openstack-security] [Bug 1365712] Re: Command Execution Possible Through Config File Tampering   Sean Dague
  • [Openstack-security] [Bug 1365712] Re: Command Execution Possible Through Config File Tampering   Nathan Kinder
• [Openstack-security] [Bug 1316271] Related fix proposed to nova (master)   OpenStack Infra
• [Openstack-security] [Bug 1118066] Re: Nova should confirm quota requests against Keystone   Davanum Srinivas (DIMS)
• [Openstack-security] [Bug 1367022] [NEW] Un-sanitized eval may have security impact   Travis McPeak
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Thierry Carrez
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Thierry Carrez
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Travis McPeak
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Eoghan Glynn
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Travis McPeak
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Thierry Carrez
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Nejc Saje
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Jeremy Stanley
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Travis McPeak
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Brant Knudson
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Brant Knudson
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Brant Knudson
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   OpenStack Infra
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Nejc Saje
  • [Openstack-security] [Bug 1367022] Change abandoned on ceilometer (master)   OpenStack Infra
  • [Openstack-security] [Bug 1367022] Re: Un-sanitized eval may have security impact   Thierry Carrez
• [Openstack-security] [Bug 1350766] Change abandoned on nova (master)   OpenStack Infra
• [Openstack-security] [Bug 1367000] Re: Malicious name could lead to local information disclosure vulnerability   Jeremy Stanley
  • [Openstack-security] [Bug 1367000] Re: Malicious name could lead to local information disclosure vulnerability   Travis McPeak
  • [Openstack-security] [Bug 1367000] Re: Malicious name could lead to local information disclosure vulnerability   Duncan Thomas
  • [Openstack-security] [Bug 1367000] Re: Malicious name could lead to local information disclosure vulnerability   Eric Harney
  • [Openstack-security] [Bug 1367000] Re: Malicious name could lead to local information disclosure vulnerability   Duncan Thomas
  • [Openstack-security] [Bug 1367000] Re: Malicious name could lead to local information disclosure vulnerability   Eric Harney
  • [Openstack-security] [Bug 1367000] Re: Malicious name could lead to local information disclosure vulnerability   Travis McPeak
• [Openstack-security] [Bug 1118194] Re: Security Documentation for Horizon   Andreas Jaeger
• [Openstack-security] [Bug 1360260] Re: 'allow_same_net_traffic=true' has no effect   Sean Dague
• [Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1348416] Re: Popen with shell=True   Sean Dague
  • [Openstack-security] [Bug 1348416] Re: Popen with shell=True   Mark Washenberger
  • [Openstack-security] [Bug 1348416] Re: Popen with shell=True   Sean Dague
• [Openstack-security] [Bug 1329301] Re: Update how tokens are redacted   Travis Tripp
  • [Openstack-security] [Bug 1329301] Re: Update how tokens are redacted   Stuart McLaren
  • [Openstack-security] [Bug 1329301] Re: Update how tokens are redacted   Travis Tripp
  • [Openstack-security] [Bug 1329301] Re: Update how tokens are redacted   Travis Tripp
  • [Openstack-security] [Bug 1329301] Re: Update how tokens are redacted   OpenStack Infra
  • [Openstack-security] [Bug 1329301] Re: Update how tokens are redacted   Travis Tripp
  • [Openstack-security] [Bug 1329301] Re: Update how tokens are redacted   Louis Taylor
• [Openstack-security] [Bug 1316822] Re: soft reboot of instance does not ensure iptables rules are present   Sean Dague
  • [Openstack-security] [Bug 1316822] Re: soft reboot of instance does not ensure iptables rules are present   Nathan Kinder
• [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/cinder] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
• [Openstack-security] [openstack/nova] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/nova] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1129748] Re: image files in _base should not be world-readable   Sean Dague
  • [Openstack-security] [Bug 1129748] Re: image files in _base should not be world-readable   Robert Clark
• [Openstack-security] [Bug 1188189] Re: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection)   Sean Dague
  • [Openstack-security] [Bug 1188189] Re: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection)   Nathanael Burton
  • [Openstack-security] [Bug 1188189] Re: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection)   Davanum Srinivas (DIMS)
  • [Openstack-security] [Bug 1188189] Re: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection)   Michael Still
  • [Openstack-security] [Bug 1188189] Re: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection)   Thierry Carrez
  • [Openstack-security] [Bug 1188189] Re: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection)   Sean Dague
  • [Openstack-security] [Bug 1188189] Re: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection)   Sean Dague
  • [Openstack-security] [Bug 1188189] Re: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection)   haruka tanizawa
• [Openstack-security] [openstack/trove] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/trove] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/trove] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/trove] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1197459] Re: noVNC contains the session token in URL and insecurely sets the session cookie   Sean Dague
• [Openstack-security] [Bug 1192971] Re: Command execution cases need to be strengthened   Sean Dague
• [Openstack-security] [Bug 985184] Re: Security groups fail to be set correctly if incorrect case is used for protocol specification   Sean Dague
• [Openstack-security] [Bug 1334926] Related fix proposed to neutron (master)   OpenStack Infra
• [Openstack-security] [Bug 1320098] Change abandoned on python-neutronclient (master)   OpenStack Infra
• [Openstack-security] [Bug 1174499] Re: Keystone token hashing is MD5   OpenStack Infra
  • [Openstack-security] [Bug 1174499] Re: Keystone token hashing is MD5   Akihiro Motoki
• [Openstack-security] [Bug 1320098] Re: neutronclient debug logging includes keystone auth token   Xu Han Peng
• [Openstack-security] [Bug 1292283] Re: revocation events: deleting a token revokes all tokens with same expiration   Morgan Fainberg
  • [Openstack-security] [Bug 1292283] Re: revocation events: deleting a token revokes all tokens with same expiration   Morgan Fainberg
  • [Openstack-security] [Bug 1292283] Re: revocation events: deleting a token revokes all tokens with same expiration   Thierry Carrez
• [Openstack-security] [Bug 1369627] Re: libvirt disk.config will have issues when booting two with different config drive values   Solly Ross
  • [Openstack-security] [Bug 1369627] Re: libvirt disk.config will have issues when booting two with different config drive values   OpenStack Infra
  • [Openstack-security] [Bug 1369627] Re: libvirt disk.config will have issues when booting two with different config drive values   Michael Still
  • [Openstack-security] [Bug 1369627] Re: libvirt disk.config will have issues when booting two with different config drive values   John Garbutt
  • [Openstack-security] [Bug 1369627] Re: libvirt disk.config will have issues when booting two with different config drive values   Jeremy Stanley
  • [Openstack-security] [Bug 1369627] Re: libvirt disk.config will have issues when booting two with different config drive values   Solly Ross
  • [Openstack-security] [Bug 1369627] Re: libvirt disk.config will have issues when booting two with different config drive values   Jeremy Stanley
  • [Openstack-security] [Bug 1369627] Re: libvirt disk.config will have issues when booting two with different config drive values   Michael Still
• [Openstack-security] [Bug 1355125] Re: keystonemiddleware appears not to hash PKIZ tokens   David Stanek
  • [Openstack-security] [Bug 1355125] Re: keystonemiddleware appears not to hash PKIZ tokens   Dolph Mathews
• [Openstack-security] [openstack/swift] SecurityImpact review request change If1983b0450a85f79f5bcd5ca6acd859d68de73e4   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1175193] Re: Instance actions history is unbounded   Sean Dague
• [Openstack-security] [Bug 1174608] Re: [OSSA 2013-010] Insecure directory creation for signing   Sean Dague
• [Openstack-security] [Bug 1368073] Re: [Security-NIST]SimpleDH in nova/virt/xenapi/agent.py does not fit the NIST   Thierry Carrez
• [Openstack-security] [Bug 1368040] Re: random.choice in /cinder/volume/utils.py may has potential security issue   Thierry Carrez
• [Openstack-security] [Bug 1367238] Re: IBM NAS cinder driver sets 'rw' permissions to all during volume create operation, which is security issue   Thierry Carrez
• [Openstack-security] [Bug 1369487] Re: NIST: increase RSA key length to 2048 bit   Thierry Carrez
  • [Openstack-security] [Bug 1369487] Re: NIST: increase RSA key length to 2048 bit   Joe Gordon
  • [Openstack-security] [Bug 1369487] Re: NIST: increase RSA key length to 2048 bit   OpenStack Infra
• [Openstack-security] [Bug 1370295] Re: Possible SQL Injection vulnerability in hyperv volumeutils2   Jeremy Stanley
• [Openstack-security] [Bug 1328488] Re: oslo apiclient logs sensitive data   Doug Hellmann
  • [Openstack-security] [Bug 1328488] Re: oslo apiclient logs sensitive data   Davanum Srinivas (DIMS)
  • [Openstack-security] [Bug 1328488] Re: oslo apiclient logs sensitive data   Davanum Srinivas (DIMS)
  • [Openstack-security] [Bug 1328488] Re: oslo apiclient logs sensitive data   Davanum Srinivas (DIMS)
• [Openstack-security] [Bug 1004114] Re: Password logging   Dolph Mathews
  • [Openstack-security] [Bug 1004114] Re: Password logging   Nathan Kinder
• [Openstack-security] [openstack/horizon] SecurityImpact review request change I6774b9b7215d191259586e4721e357487bb777cd   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1372375] Re: Attaching LVM encrypted volumes (with LUKS) could cause data loss if LUKS headers get corrupted   Jeremy Stanley
  • [Openstack-security] [Bug 1372375] Re: Attaching LVM encrypted volumes (with LUKS) could cause data loss if LUKS headers get corrupted   Patrizio Tufarolo
  • [Openstack-security] [Bug 1372375] Re: Attaching LVM encrypted volumes (with LUKS) could cause data loss if LUKS headers get corrupted   Duncan Thomas
  • [Openstack-security] [Bug 1372375] Re: Attaching LVM encrypted volumes (with LUKS) could cause data loss if LUKS headers get corrupted   Joel Coffman
  • [Openstack-security] [Bug 1372375] Re: Attaching LVM encrypted volumes (with LUKS) could cause data loss if LUKS headers get corrupted   Patrizio Tufarolo
  • [Openstack-security] [Bug 1372375] Re: Attaching LVM encrypted volumes (with LUKS) could cause data loss if LUKS headers get corrupted   Joel Coffman
  • [Openstack-security] [Bug 1372375] Re: Attaching LVM encrypted volumes (with LUKS) could cause data loss if LUKS headers get corrupted   Patrizio Tufarolo
  • [Openstack-security] [Bug 1372375] Re: Attaching LVM encrypted volumes (with LUKS) could cause data loss if LUKS headers get corrupted   Joel Coffman
• [Openstack-security] [Bug 1370283] Re: python-glanceclient uses extremely insecure configurations of OpenSSL   Jeremy Stanley
  • [Openstack-security] [Bug 1370283] Re: python-glanceclient uses extremely insecure configurations of OpenSSL   Matthew Thode
  • [Openstack-security] [Bug 1370283] Re: python-glanceclient uses extremely insecure configurations of OpenSSL   Stuart McLaren
  • [Openstack-security] [Bug 1370283] Re: python-glanceclient uses extremely insecure configurations of OpenSSL   Jeremy Stanley
• [Openstack-security] [Bug 1371355] Re: Keystone client logs x-subject-token at the debug log level   Thierry Carrez
  • [Openstack-security] [Bug 1371355] Re: Keystone client logs x-subject-token at the debug log level   Tushar Patil
  • [Openstack-security] [Bug 1371355] Re: Keystone client logs x-subject-token at the debug log level   Ankit Agrawal
  • [Openstack-security] [Bug 1371355] Re: Keystone client logs x-subject-token at the debug log level   Nathan Kinder
  • [Openstack-security] [Bug 1371355] Re: Keystone client logs x-subject-token at the debug log level   Brant Knudson
  • [Openstack-security] [Bug 1371355] Re: Keystone client logs x-subject-token at the debug log level   Tushar Patil
  • [Openstack-security] [Bug 1371355] Re: Keystone client logs x-subject-token at the debug log level   Morgan Fainberg
  • [Openstack-security] [Bug 1371355] Re: Keystone client logs x-subject-token at the debug log level   OpenStack Infra
• [Openstack-security] [Bug 1341954] Change abandoned on nova (master)   OpenStack Infra
• [Openstack-security] [Bug 1290537] Re: [0SSA 2014-011] RBAC policy not enforced when adding a security group rule using EC2 API (CVE-2014-0167)   Alan Pevec
  • [Openstack-security] [Bug 1290537] Re: [0SSA 2014-011] RBAC policy not enforced when adding a security group rule using EC2 API (CVE-2014-0167)   Alan Pevec
  • [Openstack-security] [Bug 1290537] Re: [0SSA 2014-011] RBAC policy not enforced when adding a security group rule using EC2 API (CVE-2014-0167)   Alan Pevec
• [Openstack-security] [openstack/ceilometer] SecurityImpact review request change I91a32a62204dd44fa850f9ec0efd4f45cd3d72c2   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1300274] Re: [0SSA 2014-013] V3 Authentication Chaining - uniqueness of auth method names (CVE-2014-2828)   Alan Pevec
  • [Openstack-security] [Bug 1300274] Re: [0SSA 2014-013] V3 Authentication Chaining - uniqueness of auth method names (CVE-2014-2828)   Alan Pevec
• [Openstack-security] [Bug 1321080] Re: [OSSA 2014-021] auth token is exposed in meter http.request (CVE-2014-4615)   Alan Pevec
  • [Openstack-security] [Bug 1321080] Re: [OSSA 2014-021] auth token is exposed in meter http.request (CVE-2014-4615)   Alan Pevec
• [Openstack-security] [Bug 1308727] Re: [OSSA 2014-023] XSS in Horizon Heat template - resource name (CVE-2014-3473)   Alan Pevec
  • [Openstack-security] [Bug 1308727] Re: [OSSA 2014-023] XSS in Horizon Heat template - resource name (CVE-2014-3473)   Alan Pevec
• [Openstack-security] [Bug 1289033] Re: [OSSA-2014-010] XSS in Horizon-Orchestration (CVE-2014-0157)   Alan Pevec
  • [Openstack-security] [Bug 1289033] Re: [OSSA-2014-010] XSS in Horizon-Orchestration (CVE-2014-0157)   Alan Pevec
• [Openstack-security] [openstack/python-keystoneclient] SecurityImpact review request change Ie19d093d0494443ce4cd880ae1f92dffd5c361ef   gerrit2 at review.openstack.org
  • [Openstack-security] [openstack/python-keystoneclient] SecurityImpact review request change Ie19d093d0494443ce4cd880ae1f92dffd5c361ef   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1321906] Re: [EDP] Swift credentials passed in plain text   Sergey Lukjanov
• [Openstack-security] [Bug 1369865] Re: Permanent Cookie Contains Sensitive Session Information   Gary W. Smith
  • [Openstack-security] [Bug 1369865] Re: Permanent Cookie Contains Sensitive Session Information   Gary W. Smith
• [Openstack-security] [Bug 1369870] Re: The cookies for messages, django_timezone, horizon_pagesize, and horizon_language are not marked as "secure"   Gary W. Smith
  • [Openstack-security] [Bug 1369870] Re: The cookies for messages, django_timezone, horizon_pagesize, and horizon_language are not marked as "secure"   Zhang Yun
  • [Openstack-security] [Bug 1369870] Re: The cookies for messages, django_timezone, horizon_pagesize, and horizon_language are not marked as "secure"   Gary W. Smith
  • [Openstack-security] [Bug 1369870] Re: The cookies for messages, django_timezone, horizon_pagesize, and horizon_language are not marked as "secure"   Zhang Yun
  • [Openstack-security] [Bug 1369870] Re: The cookies for messages, django_timezone, horizon_pagesize, and horizon_language are not marked as "secure"   Julie Pichon
  • [Openstack-security] [Bug 1369870] Re: The cookies for messages, django_timezone, horizon_pagesize, and horizon_language are not marked as "secure"   Gary W. Smith
• [Openstack-security] Summit Planning for Security / OSSG   Clark, Robert Graham
• [Openstack-security] [openstack/python-keystoneclient] SecurityImpact review request change Iff063149e1f12df69bbf9015222d09d798980872   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1371355] Fix proposed to python-keystoneclient (master)   OpenStack Infra
• [Openstack-security] [openstack/python-keystoneclient] SecurityImpact review request change Iac16c6358250677544761beea9f5c5d8ba29afac   gerrit2 at review.openstack.org
• [Openstack-security] [Bug 1188189] Related fix proposed to nova (master)   OpenStack Infra
• [Openstack-security] [Bug 1369876] Re: Missing HttpOnly Attribute in Session Cookie   Gary W. Smith
• [Openstack-security] [openstack/nova] SecurityImpact review request change I8e46d41164e9478b820cad569ba82f25de244620   gerrit2 at review.openstack.org
• [Openstack-security] OSSN-0030 'Shellshock' CVE-2014-6271 input request.   Kelsey, Timothy John
• [Openstack-security] [Bug 1334926] Fix proposed to neutron (stable/icehouse)   OpenStack Infra
• [Openstack-security] Congratulations on reaching 30 Security Notes   Clark, Robert Graham
  • [Openstack-security] Congratulations on reaching 30 Security Notes   Tom Fifield
    • [Openstack-security] Congratulations on reaching 30 Security Notes   Nathan Kinder
• [Openstack-security] [openstack/nova] SecurityImpact review request change I0b8e6319a4cc39876b1e396ef705f0fc5def1e44   gerrit2 at review.openstack.org

Last message date: Tue Sep 30 17:38:15 UTC 2014
Archived on: Mon Jun 17 19:18:44 UTC 2019

• Messages sorted by: [ subject ] [ author ] [ date ]
• More info on this list...