[Openstack] Security Breach! Tenant A is seeing the VNC Consoles of Tenant B!

Jeremy Stanley fungi at yuggoth.org
Tue Dec 24 15:55:14 UTC 2013


On 2013-12-22 15:37:02 -0200 (-0200), Martinx - ジェームズ wrote:
[...]
> This is a very serious problem, since I'm giving to the "Tenant
> A", almost total access to "Tenant B" Instances!! This kind of
> situation should NEVER occur!
> 
> What can I do to completely block this?
[...]

Is it possible the user for Tenant A is an admin account? Remember,
admins are global administrators regardless of what tenant they
might be associated with.
-- 
Jeremy Stanley




More information about the Openstack mailing list