Project

General

Profile

Actions
Copy link

action #133472

open

Pentesting of o3

Added by okurz over 1 year ago. Updated over 1 year ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Feature requests
Target version:
QA (public) - future
Start date:
2023-07-27
Due date:
% Done:

0%

Estimated time:

Description

Motivation

With openqa.opensuse.org now served from PRG2 it's a good opportunity to check how secure it is. So we should try with pentesting ourselves if and where any vulnerabilities are.

Actions
Copy link
 #1

Updated by favogt over 1 year ago

"secure" in which way? Which privilege boundaries and attack vectors are relvant here?

Actions
Copy link
 #2

Updated by pperego over 1 year ago

okurz wrote:

Motivation

With openqa.opensuse.org now served from PRG2 it's a good opportunity to check how secure it is. So we should try with pentesting ourselves if and where any vulnerabilities are.

Since of the sensitiveness of the activity, can be a good idea to talk internally with security team.
Makes sense?

Actions
Copy link
 #3

Updated by okurz over 1 year ago

pperego wrote:

Since of the sensitiveness of the activity, can be a good idea to talk internally with security team.
Makes sense?

Sure. I already brought it up there :)

Actions
Copy link

Also available in: Atom PDF