488c0b49fb
Later versions of Python have HTTPSConnection fixed. So OSSN-0033 should be clarified to only apply to Python earlier than 2.7.9 and 3.4.3. Change-Id: Ib50d85dec5789749bb32ecd6d58b98dcd2670b6c
OpenStack Security Notes (OSSN)
The OpenStack Security Group (OSSG) publishes Security Notes to advise users of security related issues. Security notes are similar to advisories; they address vulnerabilities in 3rd party tools typically used within OpenStack deployments and provide guidance on common configuration mistakes that can result in an insecure operating environment.
Repository Layout
This repository contains published Security Notes and templates that should be used when creating new Security Notes.
notes - contains Security Notes in e-mail format (see the templates)
templates - contains e-mail and wiki format templates
Useful Links
A list of published Security Notes is available here:
https://wiki.openstack.org/wiki/Security_Notes
The process used to create new Security Notes is available here:
https://wiki.openstack.org/wiki/Security/Security_Note_Process