Project

Profile

Help

Story #15

closed

As a user, I can rest easy in the knowledge that my celery workers will ensure that their AMQP messages are signed by a trusted sender

Added by Anonymous almost 8 years ago. Updated over 3 years ago.

Status:
CLOSED - WONTFIX
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Platform Release:
Groomed:
No
Sprint Candidate:
No
Tags:
Pulp 2
Sprint:
Quarter:

Description

We should configure Pulp to use Celery's message signing feature[0]. This will add a layer of security to protect the Celery workers from performing tasks that might have been injected by an attacker.Deliverables:Pulp server can be configured to sign messagesPulp workers can be configured to require valid signatures on messagesDocument how users can configure message signing[0] http://celery.readthedocs.org/en/latest/userguide/security.html#message-signing

Also available in: Atom PDF