View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0009875 | 10000-007: Profiles | Spec | public | 2024-10-09 15:22 | 2024-10-09 15:23 |
| Reporter | Randy Armstrong | Assigned To | |||
| Priority | normal | Severity | major | Reproducibility | always |
| Status | new | Resolution | open | ||
| Summary | 0009875: Update Profile to require that SignOnly mode be disabled by default. | ||||
| Description | ARP Poisoning and STP attack are well known vulnerabilities that affect all IP networks. Modern commercial routers have protections built in but they must be configured. To protect against misconfiguration or routers that lack the protections, applications should encrypt all messages. Making SignOnly disabled by default will reduce the likelyhood of SignOnly being used on bad networks. | ||||
| Tags | No tags attached. | ||||
| Commit Version | |||||
| Fix Due Date | |||||
| related to | 0009874 | new | 10000-002: Security | Need to Address ARP Poisoning and Spanning Tree Protocol (STP) attacks |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2024-10-09 15:22 | Randy Armstrong | New Issue | |
| 2024-10-09 15:22 | Randy Armstrong | Issue generated from: 0009874 | |
| 2024-10-09 15:22 | Randy Armstrong | Project | 10000-002: Security => 10000-007: Profiles |
| 2024-10-09 15:23 | Randy Armstrong | Relationship added | related to 0009874 |
