<HTML>
<HEAD>
<TITLE>Re: [Openstack] Messaging level auth</TITLE>
</HEAD>
<BODY>
<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>The question is more along the lines of this:<BR>
<BR>
So say u have ssl enabled, which is good.<BR>
<BR>
But should all actions/messages on the message queue also be verified before they are applied as coming from the correct user?<BR>
<BR>
Say u have an initial API call that says make me a server for user X. <BR>
<BR>
Now the scheduler gets that, it should then again verify that X can make a server (and so on).<BR>
<BR>
This kind of verification (time sensitive also) should seem like it would be useful, complimenting SSL for each component that receives a message.<BR>
<BR>
This would stop malicious (or limit) users hacking the message queue and spawning requests themselves. Just a thought.<BR>
<BR>
On 9/29/11 8:11 PM, "Mike Scherbakov" <<a href="mihgen@gmail.com">mihgen@gmail.com</a>> wrote:<BR>
<BR>
</SPAN></FONT><BLOCKQUOTE><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>Joshua,<BR>
your question scares me :)<BR>
<BR>
Actually you can define user/pass for rabbitmq:<BR>
See in rpc/impl_kombu.py, which is used by default:<BR>
308 self.params = dict(hostname=FLAGS.rabbit_host,<BR>
309 port=FLAGS.rabbit_port,<BR>
310 userid=FLAGS.rabbit_userid,<BR>
311 password=FLAGS.rabbit_password,<BR>
312 virtual_host=FLAGS.rabbit_virtual_host)<BR>
<BR>
But this seems to be not secured connection, since I don't see here usage of SSL.<BR>
In rpc/impl_carrot.py:<BR>
66 params = dict(hostname=FLAGS.rabbit_host,<BR>
67 port=FLAGS.rabbit_port,<BR>
<B> 68 ssl=FLAGS.rabbit_use_ssl,<BR>
</B> 69 userid=FLAGS.rabbit_userid,<BR>
70 password=FLAGS.rabbit_password,<BR>
71 virtual_host=FLAGS.rabbit_virtual_host)<BR>
</SPAN></FONT><SPAN STYLE='font-size:11pt'><FONT FACE="Arial">but I never tried this carrot and don't know if it works.<BR>
<BR>
Can someone else clarify the question? It seems important in terms of security.<BR>
<BR>
Thanks,<BR>
</FONT><FONT FACE="Calibri, Verdana, Helvetica, Arial"><BR>
On Wed, Sep 21, 2011 at 2:20 PM, Joshua Harlow <<a href="harlowja@yahoo-inc.com">harlowja@yahoo-inc.com</a>> wrote:<BR>
</FONT></SPAN><BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Calibri, Verdana, Helvetica, Arial">A quick security question.<BR>
<BR>
Is there any plan to force authentication/authorization of the rabbitmq messages?<BR>
<BR>
Right now it seems like keystone (tbd) will protect the external<->openstack layers but what about the openstack<->openstack layers.<BR>
<BR>
If someone got access to the rabbitmq it seems like without this kind of layer bad things could happen (create me 1000 nodes...).<BR>
<BR>
Has there been any thought in that area?<BR>
<BR>
-Josh<BR>
<BR>
<BR>
_______________________________________________<BR>
Mailing list: <a href="https://launchpad.net/~openstack">https://launchpad.net/~openstack</a><BR>
Post to : <a href="openstack@lists.launchpad.net">openstack@lists.launchpad.net</a><BR>
Unsubscribe : <a href="https://launchpad.net/~openstack">https://launchpad.net/~openstack</a><BR>
More help : <a href="https://help.launchpad.net/ListHelp">https://help.launchpad.net/ListHelp</a><BR>
<BR>
</FONT></SPAN></BLOCKQUOTE><SPAN STYLE='font-size:11pt'><FONT FACE="Calibri, Verdana, Helvetica, Arial"><BR>
<BR>
</FONT></SPAN></BLOCKQUOTE>
</BODY>
</HTML>