KBEA-Error Code EC2002

Summary

An unrecognized code was seen by the agent on an emake client connection.

Description

When the agent receives commands from the emake client, they start with code numbers. One such code was not recognized.

Security Exposure

Issuing this error on a connection that requires authentication but has not yet been authenticated should be harmless, because all it tells the attacker is that the command code was not recognized, and what the last command was on that communications channel. The last command is quite predictable before authentication, and so no real information is exposed thereby. Knowledge that a command code is unrecognized would at most provide the agent protocol version, which could be fetched directly by E2A_GET_VERSION--which does not currently require authentication (see Accelerator Kerberos Authentication for a discussion of that exposure).

Reasons

Usually emake and the agent check the version of the protocol that they will use before doing real work, and so only a bug, network glitch, etc., would cause an unrecognized code to be sent to the agent from the emake client.

Fixes

Contact Electric Cloud for further investigation.

Have more questions? Submit a request

Comments

Powered by Zendesk