Impact
When installing a Rudder agent, if no policy server is configured, the agent would fallback to sending an inventory to the rudder host in the network (if it resolves). This was meant to make installation more convenient, but could be a security issue if policy servers are not immediately configured and the domain is not controlled (or in case of an attack on DNS). As this feature was not broadly used, it was removed in 7.3.
Patches
This behavior has been removed in 7.3 on 2023/04/07.
Workarounds
Define the policy server during agent provisioning.
References
Impact
When installing a Rudder agent, if no policy server is configured, the agent would fallback to sending an inventory to the rudder host in the network (if it resolves). This was meant to make installation more convenient, but could be a security issue if policy servers are not immediately configured and the domain is not controlled (or in case of an attack on DNS). As this feature was not broadly used, it was removed in 7.3.
Patches
This behavior has been removed in 7.3 on 2023/04/07.
Workarounds
Define the policy server during agent provisioning.
References