Here are the main takeaways I got from the session on security http://pad.ceph.com/p/hammer-security_and_auth run daemons as unprivileged users. there is a ticket for this already: http://tracker.ceph.com/issues/9133 selinux policies http://tracker.ceph.com/issues/9931 gtest: update and/or move to submodule http://tracker.ceph.com/issues/9930 red hat: openstack + ceph CI testing for cinder/glance [sage] formalize security reporting procedure for upstream ceph [sage] survey: auth environments If anyone wants to own any of these efforts, speak up :) sage -- To unsubscribe from this list: send the line "unsubscribe ceph-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html