Project

General

Profile

Bug #36586

ceph-volume /etc/ceph/osd files contains keyring and is worldwide readable.

Added by Mehdi Abaakouk over 1 year ago. Updated over 1 year ago.

Status:
New
Priority:
High
Target version:
-
% Done:

0%

Source:
Tags:
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature:

Description

ceph-volume simple scan creates files in /etc/ceph/osd worldwide readable.

These files contains keyring of the osd.

Permissions of keyring stuff must be owned and readable by root only.

History

#1 Updated by Mehdi Abaakouk over 1 year ago

or something like ceph:ceph 400

#2 Updated by Mehdi Abaakouk over 1 year ago

  • Project changed from Ceph to ceph-volume

#3 Updated by Mehdi Abaakouk over 1 year ago

  • Assignee set to Mehdi Abaakouk

#4 Updated by Mehdi Abaakouk over 1 year ago

  • Priority changed from Normal to High

Also available in: Atom PDF