[Pki-devel] [PATCH] 79 - restrict AJP to localhost
Ade Lee
alee at redhat.com
Fri Oct 26 02:59:46 UTC 2012
acked by Endi. Pushed to master.
On Thu, 2012-10-25 at 11:07 -0400, Ade Lee wrote:
> Ticket 369 - Restrict AJP to localhost by default.
>
> Here is how I tested:
> 1. installed ipa master
> 2. installed ipa clone
> 3. Modified the ipa clone ipa-dogtag-proxy.conf file
> in /etc/httpd/conf.d to point to the master rather than localhost and
> restarted httpd.
> 4. Tried to access https://<clone host>/ca/admin/ca/getStatus and
> https://<master_host>/ca/admin/ca/getStatus
>
> Before the change, I am able to reach the page from both URIs. With the
> change, the page is only accessible from the master.
>
> Please review.
> Ade
>
> _______________________________________________
> Pki-devel mailing list
> Pki-devel at redhat.com
> https://www.redhat.com/mailman/listinfo/pki-devel
More information about the Pki-devel
mailing list