blob: 178e0dc22c262c35b577fde0e7ca8d299b3b5dc2 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
|
---
features:
- |
Passwords for ``rescue`` operation are now hashed for
transmission to the ``ironic-python-agent``. This functionality
requires ``ironic-python-agent`` version ``6.0.0``.
The setting ``[conductor]rescue_password_hash_algorithm``
now defaults to ``sha256``, and may be set to
``sha256``, or ``sha512``.
upgrades:
- |
The version of ``ironic-python-agent`` should be upgraded to
at least version ``6.0.0`` for rescue passwords to be hashed
for transmission.
security:
- |
Operators wishing to enforce all rescue passwords to be hashed
should use the ``[conductor]require_rescue_password_hashed``
setting and set it to a value of ``True``.
This setting will be changed to a default of ``True`` in the
Victoria development cycle.
|
