[katello-devel] [tkolhar at redhat.com: Request to change the password for RHN accounts:]

Jeff Weiss jweiss at redhat.com
Thu Oct 18 14:05:03 UTC 2012 

Ok then I think we should go ahead and change the password.  Sorry for the confusion.

-Jeff


----- Original Message -----
From: "Ladislav Jozsa" <ljozsa at redhat.com>
To: "Jeff Weiss" <jweiss at redhat.com>
Cc: "Tom McKay" <thomasmckay at redhat.com>, infosec at redhat.com, katello-devel at redhat.com, "Tazim Kolhar" <tkolhar at redhat.com>
Sent: Thursday, October 18, 2012 3:47:58 PM
Subject: Re: [katello-devel] [tkolhar at redhat.com: Request to change the password for RHN accounts:]

Machines registered to the CDN (via subscription manager) will work and
will receive updates. When such machine is registered to the CDN for the
first time, it obtains a certificate and all further authentication is
certficated based. You need the login and password only for the first
time registration. yum updates will work normally.

Regards,
Ladislav


 On Oct 18 2012, Jeff Weiss wrote:
| I guess before we do that, we should find out if machines currently registered to that account will actually stop receiving updates until their account info is changed.  I assumed that was the case, but I am actually not sure now that I think about it.
| 
| Anyone know if that is what will happen?
| 
| -jeff
| 
| 
| ----- Original Message -----
| From: "Tom McKay" <thomasmckay at redhat.com>
| To: "Tazim Kolhar" <tkolhar at redhat.com>
| Cc: "Ladislav Jozsa" <ljozsa at redhat.com>, infosec at redhat.com, katello-devel at redhat.com
| Sent: Thursday, October 18, 2012 1:53:57 PM
| Subject: Re: [katello-devel] [tkolhar at redhat.com: Request to change the password for RHN accounts:]
| 
| 
| 
| ----- Original Message -----
| > From: "Tazim Kolhar" <tkolhar at redhat.com>
| > To: "Ladislav Jozsa" <ljozsa at redhat.com>
| > Cc: katello-devel at redhat.com, infosec at redhat.com
| > Sent: Thursday, October 18, 2012 5:10:27 AM
| > Subject: Re: [katello-devel] [tkolhar at redhat.com: Request to change the password for RHN accounts:]
| > 
| > Hi,
| > 
| >   Sorry, actually I just came to know, there are lot of machines
| >   using that account that will stop working if the password is
| >   changed.
| >   Please, DO NOT change the account passwords to avoid any further
| >   issues.
| >   Please, ignore the request to change passwords.
| > 
| > 
| > Thanks & Regards,
| > Tazim.
| > 
| > 
| > > Please don't change the password, there are hundreds of machines
| > > using that account that will stop working if the password is
| > > changed.
| > 
| > >-Jeff
| 
| I would bump this a bit higher up the chain. The password went out to a publicly archived email list. You can choose to live with that hole with the potential of anyone registering and subscribing to real Red Hat content, or you can close it.
| 
| > 
| > ----- Original Message -----
| > From: "Ladislav Jozsa" <ljozsa at redhat.com>
| > To: infosec at redhat.com
| > Cc: tkolhar at redhat.com
| > Sent: Thursday, October 18, 2012 2:20:03 PM
| > Subject: [tkolhar at redhat.com: Request to change the password for  RHN
| > accounts:]
| > 
| > Hi,
| > 
| > could you please arrange password change for RHN QA due to its
| > compromise in Bugzilla?
| > 
| > Many thanks,
| > Ladislav
| > 
| > ----- Forwarded message from Tazim Kolhar <tkolhar at redhat.com> -----
| > 
| > Date: Thu, 18 Oct 2012 04:12:13 -0400 (EDT)
| > From: Tazim Kolhar <tkolhar at redhat.com>
| > To: Ladislav Jozsa <ljozsa at redhat.com>
| > Cc: Tazim Kolhar <tkolhar at redhat.com>
| > Subject: Request to change the password for  RHN accounts:
| > 
| > Hi,
| > 
| >    I have been using the below doc to register my system to rhn :
| >     https://docspace.corp.redhat.com/docs/DOC-64963
| > 
| >    While, discussing a Bug with the team I somehow made the password
| >    'public' by mistake.
| >    
| >    Requesting, you to please change the password for the above
| >    accounts in order to avoid free subscriptions.
| >    Also, please modify the doc accordingly.
| > 
| > 
| > Thanks & Regards,
| > Tazim.
| > 
| > ----- End forwarded message -----
| > 
| > --
| > Ladislav Jozsa
| > Release Test Team
| > Quality Assurance Engineer
| > Red Hat, Inc., Brno Office
| > +420 608 73 7620
| > 
| > _______________________________________________
| > katello-devel mailing list
| > katello-devel at redhat.com
| > https://www.redhat.com/mailman/listinfo/katello-devel
| > 
| 
| _______________________________________________
| katello-devel mailing list
| katello-devel at redhat.com
| https://www.redhat.com/mailman/listinfo/katello-devel

-- 
Ladislav Jozsa
Release Test Team
Quality Assurance Engineer
Red Hat, Inc., Brno Office
+420 608 73 7620

More information about the katello-devel mailing list