Hi guys , >From my fundamentals of security I do not think returning a public key is >wrong . What is sensitive is the private key. As long as that is bit exposed in any way then all should be well.
Thanks and good day Sent from my Windows Phone ________________________________ From: sebgoa<mailto:run...@gmail.com> Sent: 10/8/2013 2:42 PM To: dev@cloudstack.apache.org<mailto:dev@cloudstack.apache.org> Subject: Re: [DISCUSS] Return ssh publickeys in listSSHKeyPairs On Oct 5, 2013, at 3:41 PM, Ian Duffy <i...@ianduffy.ie> wrote: > Hi, > > With the development of gClouds, a google compute interface for > cloudstack I have found the need to get access to the ssh public keys > that Cloudstack generates as part of a keypair. > > The publickeys are currently not exposed in any way. As a result of > this I'm implementing a hacky workaround to segment ssh public keys > across tags on an instance which is far from ideal. > > Does anybody have any objections towards modifying listSSHKeyPairs to > return the public key along with the fingerprint and key name? > > Thanks, > Ian. that's a +1 from me since it is returned during the createSSHKeyPair call. There might be a security reason for not returning the public key on a list call, but I don't see it. -sebastien
