[Freeipa-devel] [PATCH] 683 block anonymous access to hbac info
Rob Crittenden
rcritten at redhat.com
Wed Jan 19 22:51:56 UTC 2011
Add a couple of acis to block anonymous access to cn=hbac and to member
attributes. This is so you can't hunt for what roles, groups, etc. a
user might be in (so you can target an attack).
ticket 811
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-rcrit-683-aci.patch
Type: text/x-patch
Size: 2727 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20110119/eeda0c24/attachment.bin>
More information about the Freeipa-devel
mailing list