ovirt-ansible icon indicating copy to clipboard operation
ovirt-ansible copied to clipboard

Published 20 hours ago verified publisher icon rhevm-qe-automation

improper address binding

Open rayhanur-rahman opened this issue 5 years ago • 0 comments

Greetings,

I am a security researcher, who is looking for security smells in Ansible scripts. I noticed instances of binding to 0.0.0.0. Binding an address to 0.0.0.0 indicates allowing connections from all IP addresses. I would like to draw attention to these instances. Binding to 0.0.0.0 may lead to denial of service attacks. Practitioners have reported how binding to 0.0.0.0 facilitated security issues for MySQL (https://serversforhackers.com/c/mysql-network-security), Memcached (https://news.ycombinator.com/item?id=16493480), and Kibana (https://www.elastic.co/guide/en/kibana/5.0/breaking-changes-5.0.html).

Any feedback is appreciated.

source: https://github.com/rhevm-qe-automation/ovirt-ansible/blob/master/examples/playbooks/remote_db.yml

rayhanur-rahman avatar Apr 19 '19 02:04 rayhanur-rahman