-
Notifications
You must be signed in to change notification settings - Fork 32
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Do not allow authd
start when registration password file is empty.
#3701
Comments
Update 23/12/2022It was found that some test cases are not passing in the PR because of an error, this issue will return to the previous state until its fixed |
Update 30/12/2022
|
Update 02/01/2023An unexpected behavior was found in the cases where the authd.pass file does not exist and the use_password tag is configured, in those cases a random password should be generated for the agents to register, but instead The following log should appear with the random password:
This issue will stay blocked until that bug is fixed |
Update 03/01/2023
|
Update 31/01/2023 - blocked 🔐
|
Update 01/02/2023
|
Update 10/02/2023
|
Update 24/02/2023 - Pending review 🚀
|
Update 27/02/2023 - Apply requested changes ✏️
|
Co-authored-by: Seyla Dámaris Gomez <[email protected]>
Conclusion 🟢The test case execution was successful 🟢. Also, a new case was added (password filed only with spaces) that is expected to fail until the issue |
QA review
|
* fix(#3701): minor changes * feat(#3701): add empty password tests for authd * style(#3701): fix indents and unnecessary quotes * feat(#3701): finish new authd tests * docs(#3701): changelog updated * revert(#3701): testfile refactor reverted * docs(#3701): add fixture description * feat(#3701): add new test case * fix(#3701): spaces filled password case is now xfail * fix(#3701): password declared directly in the yaml * docs(#3701): comment improvement Co-authored-by: Seyla Dámaris Gomez <[email protected]> * style(#3701): adapt test strucure * docs(#3701): fix docstrings * revert(#3701): remove yaml key validation inside test func * fix(#3701): correct a typo and move constant to init --------- Co-authored-by: Seyla Dámaris Gomez <[email protected]>
* fix(#3701): minor changes * feat(#3701): add empty password tests for authd * style(#3701): fix indents and unnecessary quotes * feat(#3701): finish new authd tests * docs(#3701): changelog updated * revert(#3701): testfile refactor reverted * docs(#3701): add fixture description * feat(#3701): add new test case * fix(#3701): spaces filled password case is now xfail * fix(#3701): password declared directly in the yaml * docs(#3701): comment improvement Co-authored-by: Seyla Dámaris Gomez <[email protected]> * style(#3701): adapt test strucure * docs(#3701): fix docstrings * revert(#3701): remove yaml key validation inside test func * fix(#3701): correct a typo and move constant to init --------- Co-authored-by: Seyla Dámaris Gomez <[email protected]>
* fix(#3701): minor changes * feat(#3701): add empty password tests for authd * style(#3701): fix indents and unnecessary quotes * feat(#3701): finish new authd tests * docs(#3701): changelog updated * revert(#3701): testfile refactor reverted * docs(#3701): add fixture description * feat(#3701): add new test case * fix(#3701): spaces filled password case is now xfail * fix(#3701): password declared directly in the yaml * docs(#3701): comment improvement Co-authored-by: Seyla Dámaris Gomez <[email protected]> * style(#3701): adapt test strucure * docs(#3701): fix docstrings * revert(#3701): remove yaml key validation inside test func * fix(#3701): correct a typo and move constant to init --------- Co-authored-by: Seyla Dámaris Gomez <[email protected]>
Description
A new condition was added to
main-server.c
that stops the manager and raises an error whenauthd.pass
file is empty, this is to prevent agent registration byauthd
with a empty password.Proposed test cases
The tests cases in
tests/integration/test_authd/test_authd_use_password.py
should also check the status of the manager service that now will be stopped after the error, a fixture must be added to start the manager (if stopped) before each test.Also the following case should be added.
Password null
wazuh-manager
./var/ossec/etc/authd.pass
.wazuh-manager
.Password only spaces
wazuh-manager
./var/ossec/etc/authd.pass
with only spaces.wazuh-manager
.Considerations
Steps to reproduce
Create empty
authd.pass
in thewazuh-manager
Enable password usage in
wazuh-manager
ossec.conf
Restart the
wazuh-manager
to apply the changesRegister an agent using agent-auth:
Tasks
The text was updated successfully, but these errors were encountered: