← Back to team overview

yahoo-eng-team team mailing list archive

[Bug 1707037] [NEW] GCE data source should only add "ubuntu" keys to the ubuntu user

 

Public bug reported:

GCE supports specifying SSH keys for an instance as a tuple of
(username, key).  Currently, cloud-init will add all keys to the default
(ubuntu) user, regardless of the user specified in metadata.

This is problematic because there may be users in the metadata who are
not intended to have sudo access but could gain sudo privileges via the
ubuntu user.

** Affects: cloud-init
     Importance: Undecided
         Status: New

** Affects: cloud-init (Ubuntu)
     Importance: Undecided
         Status: New

** Also affects: cloud-init (Ubuntu)
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to cloud-init.
https://bugs.launchpad.net/bugs/1707037

Title:
  GCE data source should only add "ubuntu" keys to the ubuntu user

Status in cloud-init:
  New
Status in cloud-init package in Ubuntu:
  New

Bug description:
  GCE supports specifying SSH keys for an instance as a tuple of
  (username, key).  Currently, cloud-init will add all keys to the
  default (ubuntu) user, regardless of the user specified in metadata.

  This is problematic because there may be users in the metadata who are
  not intended to have sudo access but could gain sudo privileges via
  the ubuntu user.

To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-init/+bug/1707037/+subscriptions


Follow ups