[Pki-devel] [PATCH] 79 - restrict AJP to localhost
Ade Lee
alee at redhat.com
Thu Oct 25 15:07:50 UTC 2012
Ticket 369 - Restrict AJP to localhost by default.
Here is how I tested:
1. installed ipa master
2. installed ipa clone
3. Modified the ipa clone ipa-dogtag-proxy.conf file
in /etc/httpd/conf.d to point to the master rather than localhost and
restarted httpd.
4. Tried to access https://<clone host>/ca/admin/ca/getStatus and
https://<master_host>/ca/admin/ca/getStatus
Before the change, I am able to reach the page from both URIs. With the
change, the page is only accessible from the master.
Please review.
Ade
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pki-vakwetu-0079-Restrict-AJP-to-localhost-only-by-default.patch
Type: text/x-patch
Size: 3894 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20121025/9d29ce34/attachment.bin>
More information about the Pki-devel
mailing list