openstack/security-doc
Code Issues Proposed changes

Correct typo in OSSN-0049

Browse Source 
This corrects a minor typo in the 'Discussion' section of
OSSN-0049.

Change-Id: I417d3448065f07fa03e968742e6d2929b95b9469
This commit is contained in:
Nathan Kinder
2015-07-07 06:48:33 -07:00
parent d2a52bd1a6
commit dc40698bcc
1 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
security-notes/OSSN-0049
View File

@@ -28,11 +28,11 @@ log verbosity for the purposes of debugging or extended log collection.
Depending on permissions and log storage location, these values could
be read by an intruder to the system. The credentials will provide
anyone who controls them access to the ironic API server's
administrative functions. Additionally, they could be used in conjuction
with OpenStack Identity functions to issue new authentication tokens or
perform further malicious activity depending on the scope of the
administrative account access (for example, modifying account
permissions).
administrative functions. Additionally, they could be used in
conjunction with OpenStack Identity functions to issue new
authentication tokens or perform further malicious activity depending
on the scope of the administrative account access (for example,
modifying account permissions).
All nova installations that have values defined for the
`admin_password` or `admin_auth_token` options in the `ironic` section,