Closed whimboo closed 8 years ago
As long as we cannot upgrade our Jenkins instance to at least version 1.625.x (issue #573) we have to disable Jenkins CLI by running a Groovy script during startup. How this can be done is listed here:
https://jenkins.io/blog/2015/11/06/mitigating-unauthenticated-remote-code-execution-0-day-in-jenkins-cli/
PR #825 got merged.
As long as we cannot upgrade our Jenkins instance to at least version 1.625.x (issue #573) we have to disable Jenkins CLI by running a Groovy script during startup. How this can be done is listed here:
https://jenkins.io/blog/2015/11/06/mitigating-unauthenticated-remote-code-execution-0-day-in-jenkins-cli/