Bug 1262984

Summary: [RFE] Remove old CA file
Product: Red Hat CloudForms Management Engine Reporter: Thom Carlin <tcarlin>
Component: ApplianceAssignee: Nick Carboni <ncarboni>
Status: CLOSED ERRATA QA Contact: Thom Carlin <tcarlin>
Severity: medium Docs Contact:
Priority: medium    
Version: 5.5.0CC: abellott, jhardy, kbrock, mfeifer, obarenbo, pkovar, snansi
Target Milestone: GAKeywords: FutureFeature
Target Release: 5.5.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: 5.5.0.5 Doc Type: Enhancement
Doc Text:
The new version of CloudForms Management Engine no longer ships with the outdated /var/www/miq/vmdb/certs/ca.cer certificate authority file. This file is no longer in use. Additionally, all references to the file in documentation have been removed.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2015-12-08 13:30:20 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Thom Carlin 2015-09-14 19:48:39 UTC 
Description of enhancement:

CloudForms appliance ships with expired CA public key.  Please remove /var/www/miq/vmdb/certs/ca.cer and all references to this file.

Version-Release number of selected component (if applicable):

5.4.2

Additional info:

May need to remove server.cer, server.cer.key, and crl.crt also.  This should be replaced by information in the Application Hardening docs.
Comment 4 Nick Carboni 2015-09-18 19:09:02 UTC 
https://github.com/ManageIQ/manageiq/pull/4432
Comment 5 CFME Bot 2015-10-02 16:19:16 UTC 
New commit detected on ManageIQ/manageiq/master:
https://github.com/ManageIQ/manageiq/commit/3b560b833612939431fd1bfccf1b6cca25298787

commit 3b560b833612939431fd1bfccf1b6cca25298787
Author:     Nick Carboni <ncarboni>
AuthorDate: Fri Sep 18 11:04:44 2015 -0400
Commit:     Nick Carboni <ncarboni>
CommitDate: Fri Sep 18 11:04:44 2015 -0400

    Removed certs/ca.cer file
    
    https://bugzilla.redhat.com/show_bug.cgi?id=1262984

 certs/ca.cer | 17 -----------------
 1 file changed, 17 deletions(-)
 delete mode 100644 certs/ca.cer
Comment 6 Thom Carlin 2015-10-27 17:32:21 UTC 
Verified file removed in 5.5.0.7-beta1.3
Comment 10 Thom Carlin 2015-11-04 14:32:31 UTC 
Verified in latest doc spin
Comment 12 errata-xmlrpc 2015-12-08 13:30:20 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2015:2551