[Openstack-security] [openstack/keystone] SecurityImpact review request change Icf8dd2f0b88abc89092d487bbcefb525960c4ec6
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Wed Jul 29 22:12:12 UTC 2015
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/207226
Log:
commit c384523260754950be009e546a5c3cdd0c38ca2f
Author: Brant Knudson <bknudson at us.ibm.com>
Date: Wed Jul 29 16:29:42 2015 -0500
Config option for insecure responses
oslo.log's "debug" option was coopted to also indicate that the
responses should include more information. A separate config
option should be used instead so that deployers don't mistakenly
expose themselves to security issues.
SecurityImpact
Change-Id: Icf8dd2f0b88abc89092d487bbcefb525960c4ec6
Closes-Bug: 1479523
More information about the Openstack-security
mailing list