Code Review
/
releng-anteater.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
review
|
tree
raw
|
patch
| inline |
side by side
(parent:
99d7e88
)
Add regex for all interfaces '0.0.0.0'
57/40857/1
author
lhinds
<lhinds@redhat.com>
Fri, 1 Sep 2017 14:32:09 +0000
(15:32 +0100)
committer
lhinds
<lhinds@redhat.com>
Fri, 1 Sep 2017 14:32:09 +0000
(15:32 +0100)
Listening on all interfaces can be problematic and break any
security zones or DMZ style topologies
Change-Id: Ied66dd22b668d469ddba4ee28b2999154f2005b8
Signed-off-by: lhinds <lhinds@redhat.com>
master_list.yaml
patch
|
blob
|
history
diff --git
a/master_list.yaml
b/master_list.yaml
index
af35076
..
4ee1f4c
100644
(file)
--- a/
master_list.yaml
+++ b/
master_list.yaml
@@
-185,6
+185,9
@@
file_audits:
finger:
regex: \bfinger\b
desc: "Avoid coms applications that transmit credentials in clear text"
+ allint:
+ regex: 0\.0\.0\.0
+ desc: "Interface listening on all addresses - may break security zones"
licence:
licence_ext:
Code Review / releng-anteater.git / commitdiff