5:57 a.m.
ESB service is automatically exposed via EBWS
---------------------------------------------
Key: JBESB-1971
URL: https://jira.jboss.org/jira/browse/JBESB-1971
Project: JBoss ESB
Issue Type: Bug
Security Level: Public (Everyone can see)
Components: Rosetta, Web Services
Affects Versions: 4.4 CP1
Reporter: Jiri Pechanec
Priority: Critical
When the attribute webservice is omitted the ESB service is automatically exposed as EBWS.
This
1) Is security risk
2) Violates backward compatibility
The services should not be exposed automatically or there should be global switch that
enables/disable automatic exposure and disabled by default.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6:40 a.m.
New subject: [JBoss JIRA] Work started: (JBESB-1971) ESB service is automatically exposed via EBWS
[
https://jira.jboss.org/jira/browse/JBESB-1971?page=com.atlassian.jira.plu...
]
Work on JBESB-1971 started by Jim Ma.
ESB service is automatically exposed via EBWS
---------------------------------------------
Key: JBESB-1971
URL: https://jira.jboss.org/jira/browse/JBESB-1971
Project: JBoss ESB
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Rosetta, Web Services
Affects Versions: 4.4 CP1
Reporter: Jiri Pechanec
Assignee: Jim Ma
Priority: Critical
When the attribute webservice is omitted the ESB service is automatically exposed as
EBWS. This
1) Is security risk
2) Violates backward compatibility
The services should not be exposed automatically or there should be global switch that
enables/disable automatic exposure and disabled by default.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6:40 a.m.
New subject: [JBoss JIRA] Assigned: (JBESB-1971) ESB service is automatically exposed via EBWS
[
https://jira.jboss.org/jira/browse/JBESB-1971?page=com.atlassian.jira.plu...
]
Jim Ma reassigned JBESB-1971:
-----------------------------
Assignee: Jim Ma
ESB service is automatically exposed via EBWS
---------------------------------------------
Key: JBESB-1971
URL: https://jira.jboss.org/jira/browse/JBESB-1971
Project: JBoss ESB
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Rosetta, Web Services
Affects Versions: 4.4 CP1
Reporter: Jiri Pechanec
Assignee: Jim Ma
Priority: Critical
When the attribute webservice is omitted the ESB service is automatically exposed as
EBWS. This
1) Is security risk
2) Violates backward compatibility
The services should not be exposed automatically or there should be global switch that
enables/disable automatic exposure and disabled by default.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6:42 a.m.
New subject: [JBoss JIRA] Updated: (JBESB-1971) ESB service is automatically exposed via EBWS
[
https://jira.jboss.org/jira/browse/JBESB-1971?page=com.atlassian.jira.plu...
]
Jim Ma updated JBESB-1971:
--------------------------
Attachment: JBESB-1971.patch
ESB service is automatically exposed via EBWS
---------------------------------------------
Key: JBESB-1971
URL: https://jira.jboss.org/jira/browse/JBESB-1971
Project: JBoss ESB
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Rosetta, Web Services
Affects Versions: 4.4 CP1
Reporter: Jiri Pechanec
Assignee: Jim Ma
Priority: Critical
Attachments: JBESB-1971.patch
When the attribute webservice is omitted the ESB service is automatically exposed as
EBWS. This
1) Is security risk
2) Violates backward compatibility
The services should not be exposed automatically or there should be global switch that
enables/disable automatic exposure and disabled by default.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6:42 a.m.
New subject: [JBoss JIRA] Commented: (JBESB-1971) ESB service is automatically exposed via EBWS
[
https://jira.jboss.org/jira/browse/JBESB-1971?page=com.atlassian.jira.plu...
]
Kevin Conner commented on JBESB-1971:
-------------------------------------
Declaring the schemas will expose the service through a WS endpoint as that is the
intention.
This is not a security risk, as it is behaving as documented, and cannot violate backward
compatibility as this functionality did not previously exist.
ESB service is automatically exposed via EBWS
---------------------------------------------
Key: JBESB-1971
URL: https://jira.jboss.org/jira/browse/JBESB-1971
Project: JBoss ESB
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Rosetta, Web Services
Affects Versions: 4.4 CP1
Reporter: Jiri Pechanec
Assignee: Jim Ma
Priority: Critical
Attachments: JBESB-1971.patch
When the attribute webservice is omitted the ESB service is automatically exposed as
EBWS. This
1) Is security risk
2) Violates backward compatibility
The services should not be exposed automatically or there should be global switch that
enables/disable automatic exposure and disabled by default.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6:44 a.m.
New subject: [JBoss JIRA] Assigned: (JBESB-1971) ESB service is automatically exposed via EBWS
[
https://jira.jboss.org/jira/browse/JBESB-1971?page=com.atlassian.jira.plu...
]
Kevin Conner reassigned JBESB-1971:
-----------------------------------
Assignee: (was: Jim Ma)
ESB service is automatically exposed via EBWS
---------------------------------------------
Key: JBESB-1971
URL: https://jira.jboss.org/jira/browse/JBESB-1971
Project: JBoss ESB
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Rosetta, Web Services
Affects Versions: 4.4 CP1
Reporter: Jiri Pechanec
Priority: Critical
Attachments: JBESB-1971.patch
When the attribute webservice is omitted the ESB service is automatically exposed as
EBWS. This
1) Is security risk
2) Violates backward compatibility
The services should not be exposed automatically or there should be global switch that
enables/disable automatic exposure and disabled by default.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
9:27 p.m.
New subject: [JBoss JIRA] Updated: (JBESB-1971) ESB service is automatically exposed via EBWS
[
https://jira.jboss.org/jira/browse/JBESB-1971?page=com.atlassian.jira.plu...
]
Jim Ma updated JBESB-1971:
--------------------------
Attachment: (was: JBESB-1971.patch)
ESB service is automatically exposed via EBWS
---------------------------------------------
Key: JBESB-1971
URL: https://jira.jboss.org/jira/browse/JBESB-1971
Project: JBoss ESB
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Rosetta, Web Services
Affects Versions: 4.4 CP1
Reporter: Jiri Pechanec
Priority: Critical
When the attribute webservice is omitted the ESB service is automatically exposed as
EBWS. This
1) Is security risk
2) Violates backward compatibility
The services should not be exposed automatically or there should be global switch that
enables/disable automatic exposure and disabled by default.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
8:43 p.m.
New subject: [JBoss JIRA] Closed: (JBESB-1971) ESB service is automatically exposed via EBWS
[
https://jira.jboss.org/jira/browse/JBESB-1971?page=com.atlassian.jira.plu...
]
Jim Ma closed JBESB-1971.
-------------------------
Resolution: Rejected
ESB service is automatically exposed via EBWS
---------------------------------------------
Key: JBESB-1971
URL: https://jira.jboss.org/jira/browse/JBESB-1971
Project: JBoss ESB
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Rosetta, Web Services
Affects Versions: 4.4 CP1
Reporter: Jiri Pechanec
Priority: Critical
When the attribute webservice is omitted the ESB service is automatically exposed as
EBWS. This
1) Is security risk
2) Violates backward compatibility
The services should not be exposed automatically or there should be global switch that
enables/disable automatic exposure and disabled by default.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
5968
days inactive
5975
days old
7 comments
3 participants
participants (3)
-
Jim Ma (JIRA) -
Jiri Pechanec (JIRA)
-
Kevin Conner (JIRA)