karaf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jean-Baptiste Onofré (JIRA) <j...@apache.org>
Subject [jira] [Updated] (KARAF-2786) Warn user about security issue with default key and document how to change it
Date Tue, 08 Apr 2014 15:30:17 GMT

     [ https://issues.apache.org/jira/browse/KARAF-2786?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Jean-Baptiste Onofré updated KARAF-2786:
----------------------------------------

    Fix Version/s:     (was: 2.3.5)
                       (was: 3.0.1)
                   2.3.6
                   3.0.2

> Warn user about security issue with default key and document how to change it
> -----------------------------------------------------------------------------
>
>                 Key: KARAF-2786
>                 URL: https://issues.apache.org/jira/browse/KARAF-2786
>             Project: Karaf
>          Issue Type: Bug
>          Components: karaf-documentation, karaf-security
>            Reporter: Jean-Baptiste Onofré
>            Assignee: Jean-Baptiste Onofré
>             Fix For: 2.4.0, 4.0.0, 3.0.2, 2.3.6
>
>
> Default Karaf distribution provides a self signed key used by the SSHd server.
> We should warn the users that the default distribution is potentially "vulnerable" and
document how to use keytool, etc to change the key.
> In addition of the etc/keys.properties, we should document the etc/users.properties to
change property and add a note about encryption.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message