On 07/15/2013 12:22 PM, Jaroslav Reznik wrote:
1. Refactoring of the Fedora web site to put the cloud image on equal footing with the desktop image download. The new F19 cloud images page [2] is very nice thanks to the hard work of the web team, but unfortunately, in order to find it, one has to go down into the cellar, into a disused lavatory with a sign on the door saying Beware of the Leopard. Let's put it on display in the metaphorical front lobby.
Do these images support instance data injection by default? Then we need to make absolutely clear that it's unsafe to run them outside an environment that filters instance data injection requests. For example, these images must not be installed on a bare-metal system connected to the public Internet, or used to set up guests on a regular hypervisor.
-- Florian Weimer / Red Hat Product Security Team -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
