[
https://issues.apache.org/jira/browse/CLOUDSTACK-5822?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15000227#comment-15000227
]
ASF GitHub Bot commented on CLOUDSTACK-5822:
--------------------------------------------
Github user NuxRo commented on the pull request:
https://github.com/apache/cloudstack/pull/1044#issuecomment-155735899
On a second thought - and something worth pondering on - this could have
some security implications.
Imagine you have a private cloud, a developer/employee leaves and you want
to remove his key from the instances because "security". People used to the old
behaviour might think they're safe when they are in fact not.
Thoughts?
Now, multi-key support, that'd be terrific. :-)
> ssh keypairs are removed after rebooting vm
> -------------------------------------------
>
> Key: CLOUDSTACK-5822
> URL: https://issues.apache.org/jira/browse/CLOUDSTACK-5822
> Project: CloudStack
> Issue Type: Bug
> Security Level: Public(Anyone can view this level - this is the
> default.)
> Affects Versions: 4.3.0
> Reporter: Wei Zhou
> Assignee: Wei Zhou
>
> For a ssh keypair-enabled vm, the keys in /root/.ssh/authorized_keys will be
> reset after rebooting the vm. Only the keypair specified in cloudstack will
> be added. We should keep the keypairs added by users.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
