Separating nova_sudoers into node-specific files sounds like a good idea
too (nova user is more exposed on API nodes, and API nodes actually do
not need a nova user that has the power of screwing up your network
configuration)
** Changed in: nova (Ubuntu)
Status: Confirmed => Triaged
** Changed in: nova (Ubuntu)
Assignee: (unassigned) => Thierry Carrez (ttx)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nova in Ubuntu.
https://bugs.launchpad.net/bugs/681774
Title:
nova_sudoers is brittle, often out of date, and too permissive
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nova/+bug/681774/+subscriptions
--
Ubuntu-server-bugs mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
