Issue #1981 has been reported by luke. ---------------------------------------- Feature #1981: Facter should support designating values as untrusted http://projects.reductivelabs.com:80/issues/1981
Author: luke Status: Accepted Priority: Normal Assigned to: Category: Target version: Complexity: Unknown Keywords: As we make it easier to inject data into Facter, it's quite possible that a normal user could eventually be given the right to add data to Facter. This presents the possibility of a normal user affecting the behaviour of Puppetd, effectively providing a means of exploit. We need some way to either only allow values provided by root, or a way of designating values as trusted vs. untrusted. Then Puppet probably needs some way to support the difference, ignoring untrusted values or something similar. ---------------------------------------- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://reductivelabs.com/redmine/my/account --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en -~----------~----~----~----~------~----~------~--~---
