empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-06 08:55:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
66e720d34d
fleet/server
History
Zachary Wasserman 66e720d34d Reduce port scanning possibilities via SMTP configuration 
The SMTP configuration could be used by an admin user to port scan the network
the Fleet server was running on. This commit reduces the information possible
to determine via this technique. A malicious admin can no longer determine
whether any TCP server is listening on a given port/address. They can only
determine ports and addresses where SMTP servers are running.

Thanks to 'quikke' for reporting this vulnerability.
2018-09-18 14:56:25 -04:00
..
config Add flags for configuring MySQL connection pooling limits (#1672) 2017-12-19 13:52:52 -08:00
contexts Refactoring and fixes in user authorization 2018-09-18 14:56:25 -04:00
datastore Delete packs that have already been soft-deleted (#1924) 2018-09-12 17:50:30 -07:00
health Fix documentation typos (#1682) 2017-12-21 18:37:32 -08:00
kolide Allow update of settings page without enabling SMTP (#1903) 2018-09-07 15:37:35 -07:00
launcher Merge branch 'master' into fleetctl 2018-05-01 17:26:32 -07:00
logwriter Fix documentation typos (#1682) 2017-12-21 18:37:32 -08:00
mail Reduce port scanning possibilities via SMTP configuration 2018-09-18 14:56:25 -04:00
mock Prevent non-admin users from modifying other users 2018-09-18 14:56:25 -04:00
pubsub Update redigo import (#1821) 2018-06-11 12:14:21 -07:00
service Refactoring and fixes in user authorization 2018-09-18 14:56:25 -04:00
sso Trim whitespace from X509 certificate (#1900) 2018-08-10 12:42:35 -07:00
test Fix pack and query UI issues in Fleet 2.0 (#1829) 2018-06-15 10:13:11 -04:00
websocket Rename project to Kolide Fleet (#1529) 2017-06-22 15:50:45 -04:00