65bc566405
In different deployment scenarios Puppet generates
different firewall rules and potentially can add
permit rule, which will allow access to unused or
secure ports/services. We should check iptables
for security holes on slaves:
1. listen on admin interface on some unused port
(tcp or udp);
2. try to connect to that port from master node
and send data;
3. check that connection attempt was blocked and
data was not received.
Change-Id: I1f625a75f4febf372948c47a1c920b6aed885a4b
Closes-bug: #1346265
(cherry picked from commit
|
||
|---|---|---|
| .. | ||
| __init__.py | ||
| checkers.py | ||
| common.py | ||
| decorators.py | ||
| eb_tables.py | ||
| http.py | ||
| instance_initial_scenario | ||
| log_server.py | ||
| os_actions.py | ||
| security.py | ||