Public bug reported:
GCE supports specifying SSH keys for an instance as a tuple of
(username, key). Currently, cloud-init will add all keys to the default
(ubuntu) user, regardless of the user specified in metadata.
This is problematic because there may be users in the metadata who are
not intended to have sudo access but could gain sudo privileges via the
ubuntu user.
** Affects: cloud-init
Importance: Undecided
Status: New
** Affects: cloud-init (Ubuntu)
Importance: Undecided
Status: New
** Also affects: cloud-init (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to cloud-init.
https://bugs.launchpad.net/bugs/1707037
Title:
GCE data source should only add "ubuntu" keys to the ubuntu user
Status in cloud-init:
New
Status in cloud-init package in Ubuntu:
New
Bug description:
GCE supports specifying SSH keys for an instance as a tuple of
(username, key). Currently, cloud-init will add all keys to the
default (ubuntu) user, regardless of the user specified in metadata.
This is problematic because there may be users in the metadata who are
not intended to have sudo access but could gain sudo privileges via
the ubuntu user.
To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-init/+bug/1707037/+subscriptions
--
Mailing list: https://launchpad.net/~yahoo-eng-team
Post to : yahoo-eng-team@lists.launchpad.net
Unsubscribe : https://launchpad.net/~yahoo-eng-team
More help : https://help.launchpad.net/ListHelp
