[Bug 966590] [NEW] implement full explicit ingress filtering on non-Local provider bootstrapping node
Jamie Strandboge
jamie at ubuntu.com
Tue Mar 27 20:45:07 UTC 2012
Public bug reported:
This is a tracking bug for a dependency of the juju MIR (bug #912861).
This is different from bug #966558 in that this bug implements explicit full ingress filtering on the bootstrapping node. This helps ensure that services started on the bootstrapping node can't be trampolined to more privileged juju access. Access might be something like:
* allow ping and 22/tcp from anywhere
* allow only ping, 22/tcp and 2181/tcp (zookeeper) from deployed nodes
** Affects: juju (Ubuntu)
Importance: Undecided
Status: Triaged
** Affects: juju (Ubuntu Precise)
Importance: Undecided
Status: Triaged
** Tags: rls-p-tracking
** Also affects: juju (Ubuntu Precise)
Importance: Undecided
Status: Triaged
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to juju in Ubuntu.
https://bugs.launchpad.net/bugs/966590
Title:
implement full explicit ingress filtering on non-Local provider
bootstrapping node
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/juju/+bug/966590/+subscriptions
More information about the Ubuntu-server-bugs
mailing list