Actions
Fix #6075
closedceph.client.admin.keyring doesn't allow read to non-root users
% Done:
0%
Source:
other
Tags:
Backport:
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):
Description
The ceph-create-keys script creates the file with 0600 and this causes issues when deploying. Our docs have to add this extra step
of calling chmod on that file.
Updated by Alfredo Deza almost 10 years ago
- Status changed from New to 12
- Priority changed from Normal to High
Updated by Alfredo Deza almost 10 years ago
- Tracker changed from Feature to Fix
- Project changed from devops to Ceph
- Subject changed from ceph-deploy: admin push should have a chmod option to ceph.client.admin.keyring doesn't allow read to non-root users
- Category deleted (
ceph-deploy)
Updated by Alfredo Deza almost 10 years ago
- Status changed from 12 to Fix Under Review
Pull request opened https://github.com/ceph/ceph/pull/2084
Updated by Alfredo Deza almost 10 years ago
- Status changed from Fix Under Review to Rejected
The admin keyring should remain with those permissions as they give superuser access to the cluster.
I think that docs-wise this means that we should encourage `sudo` or root when operating the cluster.
Actions