cloudstack-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Frankie Onuonga <fran...@angani.co>
Subject RE: [DISCUSS] Return ssh publickeys in listSSHKeyPairs
Date Tue, 08 Oct 2013 13:05:32 GMT
Hi guys ,
>From my fundamentals of security I do not think returning a public key is wrong .
What is sensitive is the private key.
As long as that is bit exposed in any way then all should be well.

Thanks and good day

Sent from my Windows Phone
________________________________
From: sebgoa<mailto:runseb@gmail.com>
Sent: ‎10/‎8/‎2013 2:42 PM
To: dev@cloudstack.apache.org<mailto:dev@cloudstack.apache.org>
Subject: Re: [DISCUSS] Return ssh publickeys in listSSHKeyPairs


On Oct 5, 2013, at 3:41 PM, Ian Duffy <ian@ianduffy.ie> wrote:

> Hi,
>
> With the development of gClouds, a google compute interface for
> cloudstack I have found the need to get access to the ssh public keys
> that Cloudstack generates as part of a keypair.
>
> The publickeys are currently not exposed in any way. As a result of
> this I'm implementing a hacky workaround to segment ssh public keys
> across tags on an instance which is far from ideal.
>
> Does anybody have any objections towards modifying listSSHKeyPairs to
> return the public key along with the fingerprint and key name?
>
> Thanks,
> Ian.

that's a +1 from me since it is returned during the createSSHKeyPair call.

There might be a security reason for not returning the public key on a list call, but I don't
see it.

-sebastien

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message