[openstack-dev] [kolla] Kolla configuration files owner and permission
Steven Dake (stdake)
stdake at cisco.com
Tue Aug 23 05:29:27 UTC 2016
On 8/22/16, 7:24 PM, "duonghq at vn.fujitsu.com" <duonghq at vn.fujitsu.com> wrote:
>Hello Kollish,
>
>I am working on bp ansible-specific-task-become so I need community opinion about Kolla configuration files owner and permissions.
>
>For files in "/var/lib/kolla", it's quite clear that the owner should be 'root' as currently.
>
>For files in "/etc/kolla": After discussion with S.Dake on IRC, he recommends /etc/kolla is owned by root and all files in it is 660 (writable by a group).
Just to add a bit of clarity, the rationale for this idea is that a group of operators could add themselves to the kolla group on all of the nodes and use their specific ssh keys to operate OpenStack. This is why the group concept in unix was invented 50 odd years ago ;)
Regards
-steve
>
>Anybody has idea about this topic?
>
>Best regards,
>
>Ha Quang Duong (Mr.)
>PODC - Fujitsu Vietnam Ltd.
>
>
>__________________________________________________________________________
>OpenStack Development Mailing List (not for usage questions)
>Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe
>http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
More information about the OpenStack-dev
mailing list