Uploaded image for project: 'Data Management'
  1. Data Management
  2. DM-20048

Unauthenticated Redis database - lsst-sui-tomcat01.ncsa.illinois.edu

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Done
    • Resolution: Done
    • Fix Version/s: None
    • Component/s: SUIT
    • Labels:
      None
    • Story Points:
      2
    • Epic Link:
    • Sprint:
      SUIT Sprint 2019-07, SUIT Sprint 2019-08
    • Team:
      Science User Interface

      Description

      This is a recreation of a jira ticket submitted by NCSA security in our internal ticket system:

      "Qualys scan has found an instance of Redis that seems to allow unauthenticated connections on lsst-sui-tomcat01.ncsa.illinois.edu

      We would like to make sure only authorized users and hosts are able to connect to this redis instance. There is concern that maybe the Jupiter hubs users/machines can connect to this database."

        Attachments

          Issue Links

          links to

          Web Link Pull Request

            Activity

            Ascending order - Click to sort in descending order
            mtlong2 Matthew Thomas Long [X] (Inactive) created issue -
            xiuqin Xiuqin Wu [X] (Inactive) made changes -
            Field Original Value New Value
            Epic Link DM-17262 [ 239050 ]
            xiuqin Xiuqin Wu [X] (Inactive) made changes -
            Component/s SUIT [ 11308 ]
            Sprint SUIT Sprint 2019-07 [ 876 ]
            Team Science User Interface [ 10303 ]
            xiuqin Xiuqin Wu [X] (Inactive) made changes -
            Sprint SUIT Sprint 2019-07 [ 876 ] SUIT Sprint 2019-07, SUIT Sprint 2019-08 [ 876, 877 ]
            loi Loi Ly made changes -
            Status To Do [ 10001 ] In Progress [ 3 ]
            loi Loi Ly made changes -
            Reviewers Tatiana Goldina [ tatianag ]
            Status In Progress [ 3 ] In Review [ 10004 ]
            xiuqin Xiuqin Wu [X] (Inactive) made changes -
            Reviewers Tatiana Goldina [ tatianag ] Matthew Thomas Long, Tatiana Goldina [ mtlong2, tatianag ]
            xiuqin Xiuqin Wu [X] (Inactive) made changes -
            Story Points 2
            loi Loi Ly made changes -
            Remote Link This issue links to "Pull Request (Web Link)" [ 21244 ]
            loi Loi Ly made changes -
            Resolution Done [ 10000 ]
            Status In Review [ 10004 ] Done [ 10002 ]

              People

              Assignee:
              loi Loi Ly
              Reporter:
              mtlong2 Matthew Thomas Long [X] (Inactive)
              Reviewers:
              Matthew Thomas Long [X] (Inactive), Tatiana Goldina
              Watchers:
              Christopher Clausen [X] (Inactive), Leandro Avila-Diaz, Loi Ly, Matthew Thomas Long [X] (Inactive), Tatiana Goldina, Xiuqin Wu [X] (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Jenkins

                  No builds found.