Closed jt-dd closed 8 months ago
Need to update the docs with more details on the attack as discussed
I think there is some logic missing in the role_bind_namespace case
For me it checks both at the same time. You prefer one check for each ?
I think there is some logic missing in the role_bind_namespace case
For me it checks both at the same time. You prefer one check for each ?
where does it check the RBAC condition? I might be missing it but I dont see it?
can you run this against a large clustrer e.g gizmo to verify the performance impact?
Everything has been documented in the ROLE_BIND.md file, but in a nutshell, the role bind attack has been divided in 4 parts: