Uploaded image for project: 'Data Management'
  1. Data Management
  2. DM-20048

Unauthenticated Redis database - lsst-sui-tomcat01.ncsa.illinois.edu

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Done
    • Resolution: Done
    • Fix Version/s: None
    • Component/s: SUIT
    • Labels:
      None
    • Story Points:
      2
    • Epic Link:
    • Sprint:
      SUIT Sprint 2019-07, SUIT Sprint 2019-08
    • Team:
      Science User Interface

      Description

      This is a recreation of a jira ticket submitted by NCSA security in our internal ticket system:

      "Qualys scan has found an instance of Redis that seems to allow unauthenticated connections on lsst-sui-tomcat01.ncsa.illinois.edu

      We would like to make sure only authorized users and hosts are able to connect to this redis instance. There is concern that maybe the Jupiter hubs users/machines can connect to this database."

        Attachments

          Issue Links

            Activity

            No work has yet been logged on this issue.

              People

              Assignee:
              loi Loi Ly
              Reporter:
              mtlong2 Matthew Thomas Long [X] (Inactive)
              Reviewers:
              Matthew Thomas Long [X] (Inactive), Tatiana Goldina
              Watchers:
              Christopher Clausen [X] (Inactive), Leandro Avila-Diaz, Loi Ly, Matthew Thomas Long [X] (Inactive), Tatiana Goldina, Xiuqin Wu [X] (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Jenkins

                  No builds found.