It seems like this warrants an advisory (class A according to VMT's taxonomy: https://security.openstack.org/vmt-process.html#incident-report-taxonomy).
@keystone-coresec, please review proposed patch in comment #12.
Is there a documented manual procedure to unlock accounts?
It seems like this warrants an advisory (class A according to VMT's taxonomy: https:/ /security. openstack. org/vmt- process. html#incident- report- taxonomy).
@keystone-coresec, please review proposed patch in comment #12.
Is there a documented manual procedure to unlock accounts?