Hi everyone, I'm running 0.72-2-1 on ubuntu. I just created a client with these ACLs: caps: [mon] allow r caps: [osd] allow rwx pool=cloudstack
So my cloudstack + KVM hypervisors work fine. However any client I can view full details of all the cluster's auth keys by running: ceph --id cloudstack --keyring=/etc/ceph/ceph.keyring auth list. Is this a security hole in this version?
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ ceph-users mailing list ceph-users@lists.ceph.com http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
