[Openstack-security] List of steps to perform to prepare or condition long term keys?
Bryan D. Payne
bdpayne at acm.org
Fri Oct 25 15:59:34 UTC 2013
Are you talking about setting up the operating system (and it's various
applications) such that all of the keys are generated uniquely? If so,
this is very deployment specific and difficult to generalize on. If not,
could you provide some more detail on what you are asking?
-bryan
On Fri, Oct 25, 2013 at 12:25 AM, Jeffrey Walton <noloader at gmail.com> wrote:
> I was reading through the OpenStack Security Guide dated Oct 25 2013
> for Havana (http://docs.openstack.org/sec/). Good job on that, by the
> way.
>
> Does anyone have a list of steps to perform to prepare or condition
> long term keys? For example, SSH keys should be regenerated, Samba's
> secret should probably be recreated (if present), Ubuntu's Snake Oil
> key should probably be deleted (if present), etc.
>
> I'm interested in both the bare metal OS and VM instances. (VM
> instances are somewhat covered under Chapter 43).
>
> Thanks in advance.
>
> _______________________________________________
> Openstack-security mailing list
> Openstack-security at lists.openstack.org
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-security
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-security/attachments/20131025/9c9a45da/attachment.html>
More information about the Openstack-security
mailing list