Re: Ansible constructs ssh command that hangs and never returns.

@Jérôme Godbout Why would it prompt when I have set ansible_ssh_extra_args: -o StrictHostKeyChecking=no as you can see in my playbook. Also, the fact that the same ssh command without the `/bin/sh` appended does not prompt or hangs and works perfectly fine with a successful ssh. Please

Session cookie attributes are not set properly in Jenkins

It is observed that, path cookie attribute not set properly in Jenkins. Set-Cookie: ACEGI_SECURITY_HASHED_REMEMBER_ME_COOKIE=; Path=/;...Max-Age=0; Secure; HttpOnly Problem Description: Verify that the domain has not been set too loosely. It should only be set for the server that needs to

Unauthorized URL redirect via HTTP host poisoning vulnerability with Jenkins

We have noticed if we change the host header in HTTP request for Jenkins and fire the request then Jenkins is vulnerable through http host header injection. Change the Jenkins request host header to say xyz.com, then it successfully redirects to xyz.com. How do we address this vulnerability

Unable to trigger Jenkins job using API Token command-line curl

My requirement is to trigger(build) a jenkins job using command-line which I will invoke using ansible. I'm following the instructions on this stackoverflow link . I followed

How to update expired default jenkins.cer and JKS

My jenkins.cer and saml-jenkins-keystore.jks under JENKINS_HOME has certificate that has expired causing integration with ADFS using SAML 2.0 to fail. I did not find any documentation for how to update the certificate or keystore. Infact, I do not even know the password for making changes to

Re: Unable to copy jobs from older to new version of Jenkins

@Mark I guess you are pulling the same project in different versions of Jenkins from github and they work fine in all the versions. I agree and understand that they should and is actually working fine. My problem is a little different. Do the below. Consider we have 1. Jenkins version "2.224"

Unable to read credentials in Jenkins Job

Below code works and helps fetch username and password from Jenkins credentials in a piepeline. withCredentials([usernamePassword(credentialsId: 'mysql_creds', passwordVariable: 'sqlpassword', usernameVariable: 'sqlusername')]) { creds = "\nUsername: ${sqlusername}\nPassword:

How to Integrate MySQL Database with Jenkins

I'm on the Jenkins ver. 2.176.1. I wish to connect to mysql database by passing host, port, and credentials in Jenkins pipeline for SELECT / INSERT queries to an existing database table. As, I have understood there is no good plugin that works for MySQL connectivity (tried a couple which