[Openstack] Security Breach! Tenant A is seeing the VNC Consoles of Tenant B!
Jeremy Stanley
fungi at yuggoth.org
Tue Dec 24 15:55:14 UTC 2013
On 2013-12-22 15:37:02 -0200 (-0200), Martinx - ジェームズ wrote:
[...]
> This is a very serious problem, since I'm giving to the "Tenant
> A", almost total access to "Tenant B" Instances!! This kind of
> situation should NEVER occur!
>
> What can I do to completely block this?
[...]
Is it possible the user for Tenant A is an admin account? Remember,
admins are global administrators regardless of what tenant they
might be associated with.
--
Jeremy Stanley
More information about the Openstack
mailing list