Details
-
Type:
New Feature
-
Status: Closed
-
Priority:
Minor
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: EJBCA 6.11.0
-
Component/s: None
-
Labels:None
-
Issue discovered during:Review
-
Sprint:EJBCA Happy Fun Sprint (6)
Description
To guard against a malicious user using a system command in an external validator, we should have a configurable whitelist of system commands (complete paths) which can be set in external validators.
What we basically want under System Configuration is a Validators tab (because this is global), and in that tab a text box in which one may enter semicolon-separated command names (such as /var/bin/script.sh;var/bin/otherscript.sh)