Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Normal
Fix Version/s: OSSM 2.4.0
Affects Version/s: None
Component/s: Customer Impact, Maistra
Labels:
- good-first-issue

Story Points:
3
Blocked:
False
Ready:
False
Release Note Status:
In Progress
Git Pull Request:
https://github.com/maistra/istio-operator/pull/1161

Sprint:
Sprint 59, Sprint 60, Sprint 61, Sprint 62

Target Version:

OSSM 2.4.0

SFDC Cases Links:
SFDC Cases Counter:

Description

After installing the service mesh the secret in control namespace is is stored using sha1

[quicklab@upi-0 ~]$ oc get secrets
NAME TYPE DATA AGE

htpasswd Opaque 2 52d

[quicklab@upi-0 ~]$ oc get secret -n istio-system htpasswd -o json | jq .data.auth | tr -d \" | base64 -d | sed 's/}.*/}REDACTED\n/'
internal:

{SHA}

REDACTED

The SHA indicates SHA-1. In modern best practices, SHA-1 is deprecated and shouldn't be used. We have a request from customer for upgrading SHA-1

Attachments

Issue Links

mentioned on

Merge request - Updated US source to: bdd878e [OSSM-1094] Use bcrypt for htpasswd (#1161)

Activity

People

Assignee:: Cameron Garrison

Reporter:: Anand T N (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: 2021/09/23 7:00 PM

Updated:: 2023/06/15 8:55 PM

Resolved:: 2023/04/17 1:20 PM