Actions
Feature #2555
closedchef: SECURITY: Re-evaluate where configuration & key handoff gets stored
Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
chef
Target version:
-
% Done:
0%
Source:
Tags:
Backport:
Reviewed:
Affected Versions:
Pull request ID:
Description
The current setting seems to mean root on all chef nodes (even ones not running Ceph), and all knife users, have full power over Ceph.
environment, role, node, data bags?
can we limit visibility so mds doesn't see bootstrap-mon key?
Actions