A vulnerability was found in the overcloud-full images. A default root password is set. The build process for the input and utility images is a simple kickstart build process. The image build process for the shipping images involves booting the "utility" image in a VM and running commands on the image. The commands take the input image as a seed RHEL image and customizes it for our use case installing all the relevant OpenStack packages. The problem in this case is that our kickstart for the input image has: rootpw ROOTPW
Acknowledgments: Name: David Patterson (Dell)
This issue has been addressed in the following products: Red Hat OpenStack Platform 8.0 (Liberty) director Via RHSA-2016:1222 https://access.redhat.com/errata/RHSA-2016:1222
This issue has been addressed in the following products: Red Hat Enterprise Linux OpenStack Platform director 7.0 for RHEL 7 Via RHSA-2016:1223 https://access.redhat.com/errata/RHSA-2016:1223