Changes between Version 11 and Version 12 of GENIRacksHome/InstageniRacks/AcceptanceTestStatus/IG-ADM-2
- Timestamp:
- 05/27/12 10:47:18 (12 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
GENIRacksHome/InstageniRacks/AcceptanceTestStatus/IG-ADM-2
v11 v12 90 90 * Password-based SSH does not succeed 91 91 92 ==== Results of testing : 2012-05-15 ====92 ==== Results of testing step 1A: 2012-05-15 ==== 93 93 94 94 * Public key authentication works: … … 144 144 * Login does not succeed via any unencrypted login protocol 145 145 146 ==== Results of testing : 2012-05-16 ====146 ==== Results of testing step 1B: 2012-05-16 ==== 147 147 148 148 Note: this isn't a penetration test. I'm just looking for known unencrypted login protocols on public networks. On FreeBSD, `sockstat -lL46` shows IPv4 and IPv6 listeners on non-loopback networks. … … 179 179 * The command which was run should be recorded in a log 180 180 181 ==== Results of testing : 2012-05-16 ====181 ==== Results of testing step 1C: 2012-05-16 ==== 182 182 183 183 * Command succeeds: … … 204 204 * Password-based SSH does not succeed 205 205 206 ==== Results of testing : 2012-05-16 ====206 ==== Results of testing step 2A: 2012-05-16 ==== 207 207 208 208 * Public key authentication succeeds: … … 240 240 }}} 241 241 242 ==== Results of testing : 2012-05-21 ====242 ==== Results of testing step 2A: 2012-05-21 ==== 243 243 244 244 * Public key authentication succeeds: … … 279 279 * Login does not succeed via any unencrypted login protocol 280 280 281 ==== Results of testing : 2012-05-16 ====281 ==== Results of testing step 2B: 2012-05-16 ==== 282 282 283 283 On FreeBSD, `sockstat -lL46` shows IPv4 and IPv6 listeners on non-loopback networks. … … 307 307 * The command which was run should be recorded in a log 308 308 309 ==== Results of testing : 2012-05-16 ====309 ==== Results of testing step 2C: 2012-05-16 ==== 310 310 311 311 * Command succeeds: … … 398 398 * Password-based SSH does not succeed 399 399 400 ==== Results of testing : 2012-05-16 ====400 ==== Results of testing step 5A: 2012-05-16 ==== 401 401 402 402 ''Testing with Utah rack, whose control node is utah.control.geniracks.net (which believes its hostname is control.utah.geniracks.net, see instaticket:23).'' … … 443 443 * Login does not succeed via any unencrypted login protocol 444 444 445 ==== Results of testing : 2012-05-17 ====445 ==== Results of testing step 5B: 2012-05-17 ==== 446 446 447 447 * On Ubuntu, get a list of listeners using: … … 461 461 * The command which was run should be recorded in a log 462 462 463 ==== Results of testing : 2012-05-17 ====463 ==== Results of testing step 5C: 2012-05-17 ==== 464 464 465 465 * The command succeeds: … … 488 488 * Password-based SSH does not succeed from outside of the rack 489 489 490 ==== Results of testing : 2012-05-17 ====490 ==== Results of testing step 6A: 2012-05-17 ==== 491 491 492 492 ''Testing with Utah rack, using shared OpenVZ host pc5.utah.geniracks.net.'' … … 541 541 * Login does not succeed via any unencrypted login protocol 542 542 543 ==== Results of testing : 2012-05-17 ====543 ==== Results of testing step 6B: 2012-05-17 ==== 544 544 545 545 * On RHEL-like OSes, get a list of listeners using: … … 584 584 * The command which was run should be recorded in a log 585 585 586 ==== Results of testing : 2012-05-17 ====586 ==== Results of testing step 6C: 2012-05-17 ==== 587 587 588 588 * The command succeeds and the log entry is created: … … 607 607 * SSH login succeeds 608 608 609 ==== Results of testing : 2012-05-17 ====609 ==== Results of testing step 7A: 2012-05-17 ==== 610 610 611 611 ''Tested using Utah rack.'' … … 642 642 * Viewing the MAC address table should succeed 643 643 644 ==== Results of testing : 2012-05-17 ====644 ==== Results of testing step 7B: 2012-05-17 ==== 645 645 646 646 * Enable command isn't needed, since login is privileged already … … 676 676 * No other services appear to allow remote unencrypted authentication 677 677 678 ==== Results of testing : 2012-05-17 ====678 ==== Results of testing step 7C: 2012-05-17 ==== 679 679 680 680 Not applicable: given results of 7A, not bothering to test for other instances of unencrypted login. … … 703 703 * SSH login succeeds 704 704 705 ==== Results of testing : 2012-05-17 ====705 ==== Results of testing step 8A: 2012-05-17 ==== 706 706 707 707 ''Tested using Utah rack.'' … … 747 747 * Viewing the MAC address table should succeed 748 748 749 ==== Results of testing : 2012-05-17 ====749 ==== Results of testing step 8B: 2012-05-17 ==== 750 750 751 751 * Enable command isn't needed, since login is privileged already … … 781 781 * No other services appear to allow remote unencrypted authentication 782 782 783 ==== Results of testing : 2012-05-17 ====783 ==== Results of testing step 8C: 2012-05-17 ==== 784 784 785 785 Not applicable: given results of 8A, not bothering to test for other instances of unencrypted login. … … 811 811 * No other services appear to allow remote unencrypted authentication 812 812 813 ==== Results of testing : 2012-05-17 ====813 ==== Results of testing step 9: 2012-05-17 ==== 814 814 815 815 * The pc1.utah.geniracks.net iLO is at 155.98.34.103