Hi, openstack Keystone is only used if you have configured and are using the object services. If you are not using object services, then the local Keystone server will not be configured and this vulnerability should not affect you. Do you have object services enabled?
Thanks, John John T. Olson, Ph.D. Spectrum Scale Security Master Inventor 957/9032-1 Tucson, AZ, 85744 (520) 799-5185, tie 321-5185 (FAX: 520-799-4237) Email: [email protected] LinkedIn: www.linkedin.com/in/john-t-olson Follow me on twitter: @John_T_Olson From: "Hannappel, Juergen" <[email protected]> To: gpfsug main discussion list <[email protected]> Date: 08/26/2020 07:25 AM Subject: [EXTERNAL] [gpfsug-discuss] Question about Security Bulletin: Openstack Keystone vulnerabilities affects IBM Spectrum Scale (CVE-2020-12689) Sent by: [email protected] Hello, in the bulletin https://www.ibm.com/support/pages/node/6323241 it's mentioned "IBM Spectrum Scale, shipped with Openstack keystone, is exposed to vulnerabilities as detailed below." I am not aware of any openstack components in our standard Scale deployments, so how am I to read this sentence? Is there some Openstack stuff bundled into a standard gpfs installation? -- Dr. Jürgen Hannappel DESY/IT Tel. : +49 40 8998-4616 _______________________________________________ gpfsug-discuss mailing list gpfsug-discuss at spectrumscale.org http://gpfsug.org/mailman/listinfo/gpfsug-discuss
_______________________________________________ gpfsug-discuss mailing list gpfsug-discuss at spectrumscale.org http://gpfsug.org/mailman/listinfo/gpfsug-discuss
