[Bug 457030] [NEW] Access via SSH to instances is authorized by default
Thierry Carrez
thierry.carrez at ubuntu.com
Wed Oct 21 10:06:55 BST 2009
Public bug reported:
Running 20091020.3 UEC setup
It is possible to access instances on port 22 without specifically
allowing port 22 to go through.
$ euca-describe-instances
RESERVATION r-44C0079A admin default
INSTANCE i-3B21067D emi-215811A6 192.168.0.230 172.19.1.2 running mykey 0 c1.medium 2009-10-21T08:53:32.43Z vcl eki-3E2316A9 eri-21A21624
$ euca-authorize default -P tcp -p 22 -s 0.0.0.0/0
(fails, see bug 452556 for the trace)
$ euca-describe-groups
GROUP admin default default group
$ ssh -i mykey.priv ubuntu at 192.168.0.230
success !
I thought authorizing port 22 specifically was necessary:
$ euca-authorize default -P tcp -p 22 -s 0.0.0.0/0
$ euca-describe-groups
GROUP admin default default group
PERMISSION admin default ALLOWS tcp 22 22 FROM CIDR 0.0.0.0/0
** Affects: eucalyptus (Ubuntu)
Importance: Undecided
Status: New
--
Access via SSH to instances is authorized by default
https://bugs.launchpad.net/bugs/457030
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to eucalyptus in ubuntu.
More information about the Ubuntu-server-bugs
mailing list