Bug 1006416 - whitelisting of spacewalk-report command is required, not optional
Summary: whitelisting of spacewalk-report command is required, not optional
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Satellite 5
Classification: Red Hat
Component: Docs Installation Guide
Version: 560
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Dan Macpherson
QA Contact: Dan Macpherson
URL:
Whiteboard:
Depends On:
Blocks: sat560-docs
TreeView+ depends on / blocked
 
Reported: 2013-09-10 15:04 UTC by Jan Hutař
Modified: 2013-10-11 11:23 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2013-10-11 11:23:38 UTC
Target Upstream Version:

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Jan Hutař 2013-09-10 15:04:49 UTC 
Description of problem:
In "4.4.3. Configuring Servers for Enhanced Entitlements Reporting" step 5 there is:

Important
  For added security, prepend the public key content with the following: 
    command="/usr/bin/spacewalk-report $SSH_ORIGINAL_COMMAND"
  This ensures the swreport only uses the spacewalk-report command.

This made me think it is not required (it is good "only" for enhanced security), but it is required. When you do not do this, Splice fails to sync data.


Version-Release number of selected component (if applicable):
Current development version.
Comment 1 Dan Macpherson 2013-09-11 03:55:40 UTC 
Converting important admonition to step.
Comment 3 Dan Macpherson 2013-09-12 03:07:46 UTC 
Verified.
Comment 4 Clifford Perry 2013-10-11 11:23:38 UTC 
Satellite 5.6 Documentation is published, as part of the 5.6 release and can be found here: 

https://access.redhat.com/site/documentation/Red_Hat_Satellite/

Closing this bug out. Please open a new bug, if there is further issues/concerns with the Satellite Documentation.

Regards,
Cliff
Note You need to log in before you can comment on or make changes to this bug.