foreman-proxy SSL verification issue

ID C30C3A2E-4FB1-11E4-B275-14DAE9D210B8
Type freebsd
Reporter FreeBSD
Modified 2014-05-09T00:00:00


Foreman Security reports:

The smart proxy when running in an SSL-secured mode permits incoming API calls to any endpoint without requiring, or performing any verification of an SSL client certificate. This permits any client with access to the API to make requests and perform actions permitting control of Puppet CA, DHCP, DNS etc.)