Security Guide - Chapter 43. Gap In Image-to-Instance Validation
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-manuals |
Invalid
|
Medium
|
Unassigned |
Bug Description
Currently States: "We hope that future versions of Compute and/or the Image Service will offer support for validating the image hash before each instance launch. An alternative option that would be even more powerful would be allow users to sign an image and then have the signature validated when the instance is launched."
Recommended Update: "A current gap in validation is that it must currently be done by hand when desired. OpenStack does not currently support validating the image hash or user signature before each instance launch."
-------
Built: 2014-07-18T11:07:05 00:00
git SHA: 2dc0f54e2f4b1a5
URL: http://
source File: file:/home/
xml:id: security-
Changed in openstack-manuals: | |
importance: | Undecided → Medium |
status: | New → Confirmed |
tags: | added: low-hanging-fruit sec-guide |
Changed in openstack-manuals: | |
assignee: | N Dillon (sicarie) → nobody |
Changed in openstack-manuals: | |
status: | In Progress → Invalid |
A note for whoever does this, please proofreed the recommendation as it states "A current gap in validation is that it must currently..." Where the second currently is redundant and should be removed.