Issue #589: Our broker connection settings default to plaintext connections

Actions

Send by e-mail Copy link

Issue #589

closed

Our broker connection settings default to plaintext connections

Added by rbarlow about 9 years ago. Updated almost 3 years ago.

Status:

CLOSED - WONTFIX

Priority:

Normal

Assignee:

Category:

Sprint/Milestone:

Start date:

Due date:

Estimated time:

Severity:

2. Medium

Version:

2.4.0

Platform Release:

OS:

Triaged:

Yes

Groomed:

Sprint Candidate:

Tags:

Pulp 2

Sprint:

Quarter:

Description

Description of problem:
In /etc/pulp/server.conf, the two broker connections (for consumers and tasks) both default to plaintext connections, rather than SSL. Users should have to turn security off rather than turn it on.

Version-Release number of selected component (if applicable):
2.4.0

How reproducible:
Every time.

Steps to Reproduce:
1. Configure the message broker not to do SSL.
2. Use Pulp with default broker settings.

Actual results:
Pulp will connect to the message broker and function (including sending authentication information and plaintext messages).

Expected results:
Pulp should only be willing to connect to a broker that uses properly signed SSL certificates by default.

Additional info:
This is a reverse incompatible change and may be worth considering for a major release.

+ This bug was cloned from Bugzilla Bug #1156120 +

Actions

Copy link

Updated by bmbouter about 9 years ago

SSL is a supported feature for both the consumers and tasks, as described in these docs [0]. To resolve this bug I believe we should:

1) Change the defaults so they are the same as [0]
2) Add a note to the install docs that recommend users configure SSL and link to the script that will help you generate the necessary keys for Qpid. Also mention the user can configure Pulp to not use SSL and link them to those docs also.

[0]: https://pulp-user-guide.readthedocs.org/en/pulp-2.4/broker-settings.html#qpid-with-ssl

+ This comment was cloned from Bugzilla #1156120 comment 1 +

Actions

Copy link

Updated by amacdona@redhat.com about 9 years ago

Platform Release deleted (~~3.0.0~~)

Actions

Copy link

Updated by bmbouter about 9 years ago

Severity changed from Medium to 2. Medium

Actions

Copy link

Updated by bmbouter about 5 years ago

Status changed from NEW to CLOSED - WONTFIX

Actions

Copy link

Updated by bmbouter about 5 years ago

Pulp 2 is approaching maintenance mode, and this Pulp 2 ticket is not being actively worked on. As such, it is being closed as WONTFIX. Pulp 2 is still accepting contributions though, so if you want to contribute a fix for this ticket, please reopen or comment on it. If you don't have permissions to reopen this ticket, or you want to discuss an issue, please reach out via the developer mailing list.

Actions

Copy link