Loading...

Linking RHIVOS CVEs to...

Migration: Automation ...

Sync from "Extern...

XML

Word

Printable

Release Note Type:
Enhancement
Release Note Text:

Hide
.`sshd` RHEL system role validates commands and configurations

The `sshd` role uses the `quote` command when using the `command` or `shell` plugins to ensure you can use these commands safely. The role also validates certain user-supplied role variables passed to these plugins. This improves the security and robustness of using the role because, without validation, user-supplied variables that contain white space could split and not function correctly.

Show
.`sshd` RHEL system role validates commands and configurations The `sshd` role uses the `quote` command when using the `command` or `shell` plugins to ensure you can use these commands safely. The role also validates certain user-supplied role variables passed to these plugins. This improves the security and robustness of using the role because, without validation, user-supplied variables that contain white space could split and not function correctly.
Release Note Status:
Done

This is the replacement for the stale PR #245, where the reporter never came back to fix the CI issues, but we still consider that useful change.

Enhancement: Use quote command when calling shell/command modules.

Reason: The user suplied variables could split if they contain whitespace and cause unexpected behavior.

Result: User input is validated.

Issue Tracker Tickets (Jira or BZ if any): -

links to

link to github issue

RHEA-2024:143087 rhel-system-roles bug fix and enhancement update