[Openstack] OS API server password generation

Justin Santa Barbara justin at fathomdb.com
Thu Mar 3 05:55:11 UTC 2011


On Wed, Mar 2, 2011 at 8:41 PM, Mark Washenberger <
mark.washenberger at rackspace.com> wrote:

> Yikes, I'm sorry. I didn't mean to give the impression of promoting bad
> code. I was coming at it from a simplicity perspective because I mistakenly
> thought my approach was cryptographically equivalent, assuming a case where
> the user does not want to skip password injection.
>

No worries - sorry if I was harsh.  I don't really know crypto, but I know
enough to try to 'just do the standard thing'.

... it isn't in the 1.[01] spec so we'd need to agree on a sensible way of
> adding it to the api.  Does anyone know if it would create any compatibility
> problems to support an optional "disable_admin_pass": "True" attribute to
> the /servers POST request?
>

+1 for an option that defaults to false
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20110302/a4593f0b/attachment.html>


More information about the Openstack mailing list