Bug #18936: Download of OS specific kernel and initrd files should verify certificates - Smart Proxy - Foreman

Actions

Copy link

Bug #18936

closed

Download of OS specific kernel and initrd files should verify certificates

Added by Dominic Schlegel about 7 years ago. Updated almost 3 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Anna Vítová

Category:

TFTP

Target version:

Difficulty:

trivial

Triaged:

Yes

Bugzilla link:

Pull request:

https://github.com/theforeman/smart-proxy/pull/792

Fixed in Releases:

Foreman - 3.0.0

Found in Releases:

Red Hat JIRA:

Description

The documentation https://theforeman.org/manuals/1.14/index.html#4.3.9TFTP mentions that the Download of OS specific kernel and initrd files does not verify certificates. In particular step 5 of the work flow mentions the exact wget command:

wget --no-check-certificate -nv -c <src> -O "<destination>"

I can not imagine any reason why the option --no-check-certificate should be used. Therefore I suggest to remove it.
If there is a use case which is valid I suggest that the GUI offers a checkbox in the installation Media detail page that turns on/off the certificate check.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Foreman » Smart Proxy

Custom queries

Bug #18936

Download of OS specific kernel and initrd files should verify certificates

Updated by Dominic Cleal about 7 years ago

Updated by Lukas Zapletal almost 3 years ago

Updated by Lukas Zapletal almost 3 years ago

Updated by Lukas Zapletal almost 3 years ago

Updated by Dominic Schlegel almost 3 years ago

Updated by Lukas Zapletal almost 3 years ago

Updated by The Foreman Bot almost 3 years ago

Updated by Anna Vítová almost 3 years ago

Updated by The Foreman Bot almost 3 years ago

Updated by Anonymous almost 3 years ago