Feature #2555: chef: SECURITY: Re-evaluate where configuration & key handoff gets stored - devops - Ceph

Actions

Feature #2555

closed

Added by Anonymous almost 12 years ago. Updated about 6 years ago.

Status:

Rejected

Priority:

Normal

Assignee:

Category:

chef

Target version:

% Done:

Source:

Tags:

Backport:

Reviewed:

Affected Versions:

Pull request ID:

Description

The current setting seems to mean root on all chef nodes (even ones not running Ceph), and all knife users, have full power over Ceph.

environment, role, node, data bags?
can we limit visibility so mds doesn't see bootstrap-mon key?

Actions

Also available in: Atom PDF