BIND 10 #2641: Disable default account, require authentication setup during initialization
BIND 10 Development
do-not-reply at isc.org
Fri Jan 18 13:02:40 UTC 2013
#2641: Disable default account, require authentication setup during initialization
-------------------------------------+-------------------------------------
Reporter: shane | Owner:
Type: | Status: new
enhancement | Milestone: New Tasks
Priority: | Keywords:
medium | Sensitive: 0
Component: bind- | Sub-Project: Core
ctl | Estimated Difficulty: 0
CVSS Scoring: | Total Hours: 0
Defect Severity: N/A |
Feature Depending on Ticket: |
Add Hours to Ticket: 0 |
Internal?: 0 |
-------------------------------------+-------------------------------------
It's bad security practice to have default accounts.
This ticket is to disable the default account.
We should also have bindctl report something if this has not yet been
done:
$ bindctl
Please configure a user account using the b10-cmdctl-usermgr program
This would require a change in the startup of bindctl to connect to the
server before asking for user/password - but that's probably a good idea
anyway. It would also require the cmdctl recognize that there are no users
and report that via our RESTful API, but these seem simple changes.
--
Ticket URL: <http://bind10.isc.org/ticket/2641>
BIND 10 Development <http://bind10.isc.org>
BIND 10 Development
More information about the bind10-tickets
mailing list