--IScREmeGAe8TokgMCGT73cuOV6GTE7vd5 Content-Type: multipart/mixed; boundary="fdhBFjhRjrCGoD8BxK36RCrsuDwuu8rwF"; protected-headers="v1" From: Sven Kieske <s.kieske@mittwald.de> To: devel@ovirt.org Message-ID: <4e452478-1f41-040e-8f2f-0180c02a8371@mittwald.de> Subject: Re: [ovirt-devel] cloud-init metadata service References: <CAJgSuAWA8HMuC9xYSaeP3Aku=Q3yeqa_4Zd3ABauqD39nN48Rw@mail.gmail.com> <CAJgorsbXsKrtzbwp+H4VeLL0fvVwn7BQwz0Q2Va+qZcH02cvoA@mail.gmail.com> <CAJgSuAVLTOqej+jQL+zoWC2i9bGz-ONX6QuivO7EBu_3-TE9Yg@mail.gmail.com> In-Reply-To: <CAJgSuAVLTOqej+jQL+zoWC2i9bGz-ONX6QuivO7EBu_3-TE9Yg@mail.gmail.com> --fdhBFjhRjrCGoD8BxK36RCrsuDwuu8rwF Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable On 01/03/17 16:53, Marc Young wrote:
What feels hacky is that I have so little information about the VM i'm running from within that I'd have a hard time crawling the API enough t= o know the information I got was about the VM I'm testing against. Per my=
later email the ID in /var/lib/cloud/data/instance-id is not the same t= hat I'd need to hit the REST API to describe
I'm glad that this is this way. =46rom a security standpoint, this would be an information leak, which enables third party users from inside the vm to attack the ovirt system. So if you implement new features in this area, I would be very very caref= ul. --=20 Mit freundlichen Gr=FC=DFen / Regards Sven Kieske Systemadministrator Mittwald CM Service GmbH & Co. KG K=F6nigsberger Stra=DFe 6 32339 Espelkamp T: +495772 293100 F: +495772 293333 https://www.mittwald.de Gesch=E4ftsf=FChrer: Robert Meyer St.Nr.: 331/5721/1033, USt-IdNr.: DE814773217, HRA 6640, AG Bad Oeynhause= n Komplement=E4rin: Robert Meyer Verwaltungs GmbH, HRB 13260, AG Bad Oeynha= usen --fdhBFjhRjrCGoD8BxK36RCrsuDwuu8rwF-- --IScREmeGAe8TokgMCGT73cuOV6GTE7vd5 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iQIcBAEBAgAGBQJYtvEAAAoJEMby9TMDAbQRZGgP/2F6hoXvxHVXHwuh/g1zeqTu 8il12abu7FNNz1eG3zFeusV1k90At8/vQb8YGHY08gm5XSzB41MgDaKIyDkVwUBY D+86UEbZah5cBFhBknWY+RLjFP02sLTzBQSZXlbyElIJk12atFdQjERiWkDDXaXl KtUQbF7B8R9yb5Be8iWgDwyrsOQrFa3XxQ6TzDCeX54JqOawAh3d2TzmoFDnmJGb Lc8CUpBv7k1iFlRoDBqnZ4emHg5RSQnN4mJP+5R0yo2tAEs12d5bNImD/4XuTgKI zqniSZ2HKN30M0sSC22CRUvP4usTv/hB2q+mM7UWf5PmgC3BrSSbzIsATTJBWDtv P9kFZ4cm/1nfhE11DY2j5u1F+/0DTdsJFZZQv0ztAi3g1Jr17HFTyvjIpc/8i4jO umDYoB+dh+Fsc0tPOiqtqpDEI3SkLOShi8Rwvh2Yp5OQxA0rUrJ86e6SOeWjx503 N5Cxm/rUCJGb6qgVI5/kPpWCaQtlvGIxbKmvWIfObIMjwIgi52um68kFeTJW8L/O Q2euMsUpnm4FwgRzba1gOuBpdwL6DmATyqmaOBw3QapCCSxQ/tvaNY4qc1fBepMm SXLKNMqtoobtq1xMJ2xG6kZIZb9cMGP+NjFab84OjDKrEGTdtTzY/XO408Kz/RQ6 f0ApelDgAkEE0xAecFVx =GZFc -----END PGP SIGNATURE----- --IScREmeGAe8TokgMCGT73cuOV6GTE7vd5--