| opendevreview | Lance Bragstad proposed openstack/keystone master: Add test to expose app cred secret hash truncating CVE https://review.opendev.org/c/openstack/keystone/+/803641 | 18:30 |
|---|---|---|
| lbragstad | gagehugo curious what you think the right fix is for that ^ | 18:37 |
| gagehugo | I can take a look once i get home | 18:46 |
| lbragstad | sounds good- thnaks | 18:52 |
| -opendevstatus- NOTICE: The Gerrit service on review.opendev.org is going down for a quick restart to adjust its database connection configuration, and should return to service momentarily | 20:03 | |
| gagehugo | I guess force a char length for app cred secrets? | 20:08 |
| gagehugo | enforce* | 20:08 |
| lbragstad | gagehugo that would be one way to do it | 20:21 |
| lbragstad | gagehugo the hash colume for application credentials is the same length as the hash colume for passwords | 20:21 |
Generated by irclog2html.py 2.17.2 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!