Mirantis OpenStack

Bug #1526363
Activity log

Activity log for bug #1526363

Date	Who	What changed	Old value	New value	Message
2015-12-15 14:54:10	Daniil Lapshin	bug			added bug
2015-12-15 16:02:21	Roman Podoliaka	mos: assignee		Daniil Lapshin (dlapshin)
2015-12-15 16:02:23	Roman Podoliaka	mos: status	New	Incomplete
2015-12-15 17:10:02	Daniil Lapshin	mos: assignee	Daniil Lapshin (dlapshin)
2016-01-18 09:08:34	Roman Podoliaka	tags		area-linux
2016-01-18 09:08:59	Roman Podoliaka	summary	Certain ports are accessible from external network	SSH is accessible from external network
2016-01-18 09:09:15	Roman Podoliaka	information type	Private Security	Public Security
2016-01-18 09:09:24	Roman Podoliaka	nominated for series		mos/7.0.x
2016-01-18 09:09:24	Roman Podoliaka	bug task added		mos/7.0.x
2016-01-18 09:09:24	Roman Podoliaka	nominated for series		mos/9.0.x
2016-01-18 09:09:24	Roman Podoliaka	bug task added		mos/9.0.x
2016-01-18 09:09:24	Roman Podoliaka	nominated for series		mos/8.0.x
2016-01-18 09:09:24	Roman Podoliaka	bug task added		mos/8.0.x
2016-01-18 09:09:29	Roman Podoliaka	mos/8.0.x: status	Incomplete	Confirmed
2016-01-18 09:09:31	Roman Podoliaka	mos/9.0.x: status	New	Confirmed
2016-01-18 09:09:33	Roman Podoliaka	mos/7.0.x: status	New	Confirmed
2016-01-18 09:09:35	Roman Podoliaka	mos/7.0.x: importance	Undecided	Medium
2016-01-18 09:09:36	Roman Podoliaka	mos/8.0.x: importance	Undecided	Medium
2016-01-18 09:09:38	Roman Podoliaka	mos/9.0.x: importance	Undecided	Medium
2016-01-18 09:09:47	Roman Podoliaka	mos/7.0.x: milestone		7.0-updates
2016-01-18 09:09:50	Roman Podoliaka	mos/8.0.x: milestone		8.0
2016-01-18 09:09:52	Roman Podoliaka	mos/9.0.x: milestone		9.0
2016-01-18 09:10:00	Roman Podoliaka	mos/9.0.x: assignee		MOS Puppet Team (mos-puppet)
2016-01-18 09:10:05	Roman Podoliaka	mos/8.0.x: assignee		MOS Puppet Team (mos-puppet)
2016-01-18 09:10:09	Roman Podoliaka	mos/7.0.x: assignee		MOS Puppet Team (mos-puppet)
2016-01-18 09:10:11	Roman Podoliaka	mos/8.0.x: status	Confirmed	Won't Fix
2016-01-18 09:10:13	Roman Podoliaka	mos/7.0.x: status	Confirmed	Won't Fix
2016-01-18 09:10:54	Roman Podoliaka	mos: status	Confirmed	Won't Fix
2016-01-18 09:12:23	Roman Podoliaka	description	In fuel 7.0, after deployment with defaults some ports are accessible from external network: PORT STATE SERVICE 22/tcp open ssh 80/tcp open http 4369/tcp open epmd 8775/tcp open unknown 41055/tcp open unknown 49000/tcp open unknown 49001/tcp open unknown 55572/tcp open unknown This should be considered as a security vulnerability, as administrative applications (like ssh) are exposed to external network, that in most cases is internet.	In fuel 7.0, after deployment with defaults some ports are accessible from external network: PORT STATE SERVICE 22/tcp open ssh 80/tcp open http 4369/tcp open epmd 8775/tcp open unknown 41055/tcp open unknown 49000/tcp open unknown 49001/tcp open unknown 55572/tcp open unknown For administrative services like SSH it may be undesirable to be accessible from the external network (which is typically - the Internet).
2016-01-18 09:13:47	Roman Podoliaka	mos/9.0.x: importance	Medium	Wishlist
2016-01-18 09:13:49	Roman Podoliaka	mos/8.0.x: importance	Medium	Wishlist
2016-01-18 09:13:51	Roman Podoliaka	mos/7.0.x: importance	Medium	Wishlist
2016-01-18 09:13:53	Roman Podoliaka	mos: importance	Medium	Wishlist
2016-03-23 10:30:48	Ivan Berezovskiy	mos/9.0.x: assignee	MOS Puppet Team (mos-puppet)	Alexey Deryugin (velovec)
2016-03-24 14:09:47	Alexey Deryugin	mos/9.0.x: status	Confirmed	Incomplete
2016-03-24 14:18:21	Alexey Deryugin	mos/9.0.x: assignee	Alexey Deryugin (velovec)	Daniil Lapshin (dlapshin)
2016-03-25 13:17:38	Alexey Deryugin	mos/9.0.x: status	Incomplete	Invalid
2017-04-13 23:08:14	Curtis Hovey	mos: assignee	Registry Administrators (registry)