Updated openstack/openstack

Browse Source

Project: openstack/barbican  9dbf85eb4acc7b8eecc26917a4478c24294173ed

Removing signing_dir directive from config

The signing_dir directive defined in barbican-api-paste.ini explicitly
stores Keystone's signing certificates in a known /tmp directory. This
could be exploited by populating the directory with bogus certificates,
potentially allowing a malicious user to generate valid tokens.

Added comment explaining signing_dir, and a reasonable
(commented) default.

Change-Id: I15fda6863e888e3881694ab47a836eee2fb578ee
Closes-Bug: #1446406

...

This commit is contained in:

Jenkins

2015-04-24 18:24:01 +00:00

committed by Gerrit Code Review

parent 98cbe8b64a

commit e722055f49

1 changed files with 1 additions and 1 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

2

barbican

Submodule barbican updated: 4b91e1ab4a...9dbf85eb4a