Re: to ec2-user or not to ec2-user?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 12/14/2012 09:12 PM, Matthew Miller wrote:

Amazon recommends using ec2-user (with passwordless sudo) for EC2 images.
That's what Fedora has been doing. Do we want to continue this? Arguments:


A. It doesn't really provide any added security, but does add complication.
    Additionally, normal "don't run as root" advice is less important since
    cloud instances should be ephemeral and recreatable.
I think the security concern is: there are a lot of things user can do without having root privileges. Providing him with root access by default leads to unreasonable using it for everything. Using 'sudo' for privileged commands only looks better. 

--
Vitaly Kuznetsov, Cloud QE
_______________________________________________
cloud mailing list
cloud@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/cloud
[Index of Archives]     [Fedora General Discussion]     [Older Fedora Users Archive]     [Fedora Advisory Board]     [Fedora Security]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [ATA RAID]     [Fedora Marketing]     [Fedora Mentors]     [Fedora Package Announce]     [Fedora Package Review]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Coolkey]     [Yum Users]     [Big List of Linux Books]     [Yosemite News]     [Linux Apps]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Asterisk PBX]

  Powered by Linux