Microsoft update servers left all Azure RHEL instances hackable

Posted by bob on Nov 28, 2016 4:34 AM EDT
The Register; By Darren Pauli
Mail this story
Print this story

Software engineer Ian Duffy found the flaws while building a secure RHEL image for Microsoft Azure. During that process he noticed an installation script Azure uses in its preconfigured RPM Package Manager contains build host information that allows attackers to find all four Red Hat Update Appliances which expose REST APIs over HTTPS.

Full Story

  Nav
» Read more about: Story Type: Security; Groups: Linux, Microsoft

« Return to the newswire homepage

This topic does not have any threads posted yet!

You cannot post until you login.