Project

Profile

Help

Actions
Send by e-mail Copy link

Issue #589

closed

Our broker connection settings default to plaintext connections

Added by rbarlow about 9 years ago. Updated almost 3 years ago.

Status:
CLOSED - WONTFIX
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
2.4.0
Platform Release:
OS:
Triaged:
Yes
Groomed:
No
Sprint Candidate:
No
Tags:
Pulp 2
Sprint:
Quarter:

Description

Description of problem:
In /etc/pulp/server.conf, the two broker connections (for consumers and tasks) both default to plaintext connections, rather than SSL. Users should have to turn security off rather than turn it on.

Version-Release number of selected component (if applicable):
2.4.0

How reproducible:
Every time.

Steps to Reproduce:
1. Configure the message broker not to do SSL.
2. Use Pulp with default broker settings.

Actual results:
Pulp will connect to the message broker and function (including sending authentication information and plaintext messages).

Expected results:
Pulp should only be willing to connect to a broker that uses properly signed SSL certificates by default.

Additional info:
This is a reverse incompatible change and may be worth considering for a major release.

+ This bug was cloned from Bugzilla Bug #1156120 +

Actions
Send by e-mail Copy link

Also available in: Atom PDF