diff options
author | Mohit Agrawal <moagrawa@redhat.com> | 2018-06-20 16:13:00 +0530 |
---|---|---|
committer | Mohit Agrawal <moagrawa@redhat.com> | 2018-06-20 16:15:50 +0530 |
commit | e8d928e34680079e42be6947ffacc4ddd7defca2 (patch) | |
tree | ddf374dcd22523f7af12376f8a2f864f90043e8c | |
parent | cc2f2e7bfef6ca47e740c5ee6b4665ec2880f860 (diff) |
glusterfs: access trusted peer group via remote-host command
Problem: In SSL environment the user is able to access volume
via remote-host command without adding node in a trusted pool
Solution: Change the list of rpc program in glusterd.c at the
time of initialization while SSL is enabled
BUG: 1593232
Change-Id: I987e433b639e68ad17b77b6452df1e22dbe0f199
fixes: bz#1593232
Signed-off-by: Mohit Agrawal <moagrawa@redhat.com>
-rw-r--r-- | xlators/mgmt/glusterd/src/glusterd.c | 5 |
1 files changed, 0 insertions, 5 deletions
diff --git a/xlators/mgmt/glusterd/src/glusterd.c b/xlators/mgmt/glusterd/src/glusterd.c index e071f8f9bc4..316cae4243b 100644 --- a/xlators/mgmt/glusterd/src/glusterd.c +++ b/xlators/mgmt/glusterd/src/glusterd.c @@ -1722,11 +1722,6 @@ init (xlator_t *this) goto out; } /* - * With strong authentication, we can afford to allow - * privileged operations over TCP. - */ - gd_inet_programs[1] = &gd_svc_cli_prog; - /* * This is the only place where we want secure_srvr to reflect * the management-plane setting. */ |