Issue #2856: Protect ipaNTHash attribute with ACIs as any other password attribute - freeipa

freeipa

#2856 Protect ipaNTHash attribute with ACIs as any other password attribute

Closed: Fixed None Opened 11 years ago by sbose.

Currently there is not ACI denying access to ipaNTHash as for other password attributes. ipaNTHash should be protected in the same way by new installs and updated installations

pviktori commented 11 years ago

I'll take this

mkosek commented 11 years ago

I can take this ticket, I will touch global ACIs in a scope of #2511 anyway.

mkosek commented 11 years ago

attachment
freeipa-mkosek-278-remove-ipanthash-from-global-allow-aci.patch

mkosek commented 11 years ago

Patch freeipa-mkosek-278-remove-ipanthash-from-global-allow-aci.patch sent for review

mkosek commented 11 years ago

master: 32ef4ef

mkosek commented 10 years ago

Rename "trusts" component to "Trusts" to achieve correct sorting.

Metadata Update from @sbose:
- Issue assigned to mkosek
- Issue set to the milestone: FreeIPA 3.0 Beta 1

7 years ago

Metadata

Assignee

mkosek

Tags

None

Blocking

None

Depending on

None

Priority

critical

Milestone

FreeIPA 3.0 Beta 1

None

affects_doc

None

source

None

knownissue

None

type

enhancement

blockedby

None

test_case

None

component

Trusts

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#2856 Protect ipaNTHash attribute with ACIs as any other password attribute Closed: Fixed None Opened 11 years ago by sbose.

Metadata

#2856 Protect ipaNTHash attribute with ACIs as any other password attribute

Closed: Fixed None Opened 11 years ago by sbose.