[ubuntu-cloud] [ec2ubuntu] Call for ideas for Ubuntu cloud / [UEC|EC2] images / cloud-init
Liraz Siri
liraz at turnkeylinux.org
Thu Sep 30 23:54:34 BST 2010
Mark Russell wrote:
> Being able to automatically assign an Elastic IP on instance start up
> would be very cool. Here's one solution I found:
> http://www.krzywanski.net/archives/592. But it requires putting your
> private key and cert on the image. Seems like you could do something
> similar but more securely from your workstation though, maybe an option
> to cloud-utils "uec-run-instances"?
Putting your private key and cert on an image is a bad idea. If one
machine gets compromised the attacker now has access to your entire EC2
infrastructure.
The correct solution is to invoke the API to do what you want from
whatever interface you are using. This BTW, is how the TurnKey Hub
implements this functionality. On launch you can assign elastic IPs and
EBS drives. It also auto-configures the firewall rules to suite the
needs of the specific application deployed:
https://hub.turnkeylinux.org/
Cheers,
Liraz Siri
Cell: +972-54-2013512
Twitter: http://twitter.com/lirazsiri
More information about the Ubuntu-cloud
mailing list