Hi John,
Thanks for your reply, Its a normal docker container can see the mount information like /dev/sda... but this cause ip is exposed and it may security reason should avoid ip address. As of now we will try to change hostname instead of monitor ip address but is there any way to prevent to see monitors ip in containers .
Regards
Prabu GJ
---- On Wed, 20 Jul 2016 15:32:48 +0530 John Spray <jspray@xxxxxxxxxx>wrote ----
On Wed, Jul 20, 2016 at 8:33 AM, gjprabu <gjprabu@xxxxxxxxxxxx> wrote:>> Hi Team,>> We are using chepfs file systems to mount client machines, here> while mount we should provide monitoring ip address, is there any option to> hide monitoring ips address in the mounted partition. We are using container> in all ceph clients and which all able see monitoring ip's, this could be a> security issue for us. Kindly let us know is there any solution on this.Hmm, so you have a situation where the containers are prevented fromactually communicating with the monitor IPs, but the cephfs mounts areexposed to the containers in a way that lets them see them when theyrun `mount`?I don't think we've thought about this case before. Is it normal thatwhen you have e.g. a docker container with a volume attached, thecontainer can see the mount information for the filesystem that thevolume lives on?John> Regards> Prabu GJ>> _______________________________________________> ceph-users mailing list>
_______________________________________________ ceph-users mailing list ceph-users@xxxxxxxxxxxxxx http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
