etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
cloudstack/patches
History
Rohit Yadav dbe88c1ed3 CLOUDSTACK-417: Handle passwd-srvr securely on VR, port 8080 
By default do not enable port 8080 in iptables-router. Since, the socat
server which serves the password is in an infinite loop, any incorrect
attempt is returned bad_request and passwd-srvr won't break.

When /etc/init.d/cloud-passwd-srvr is started:
  - It finds and removes any old rules on port 8080, eth0
  - It applies iptables rule that accepts only traffic from private cidr.

When cloud-passwd-srvr is stopped:
  - It removes iptables rules on port 8080, eth0

Signed-off-by: Rohit Yadav <bhaisaab@apache.org>
 		2012-10-26 21:37:32 +05:30
..
systemvm/debian CLOUDSTACK-417: Handle passwd-srvr securely on VR, port 8080 2012-10-26 21:37:32 +05:30
cloudpatch-descriptor.xml License header updates, and modification to root pom for exclusions. 2012-09-13 16:55:48 -04:00
pom.xml switch to ant target to create cloud-scripts.tgz, as there is assumption that the owner of files in this tgz is root. 2012-10-21 00:01:48 -07:00