Uploaded image for project: 'Openshift sandboxed containers'
  1. Openshift sandboxed containers
  2. KATA-3265

Disable features that may compromise guest

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Done
    • Icon: Medium Medium
    • OSC 1.7.0
    • None
    • podvm-builder
    • None
    • Disable features that may compromise guest
    • BU Product Work
    • 3
    • False
    • None
    • False
    • KATA-2798Ensuring no plaintext data is leaked to the host via network when using CoCo
    • Not Selected
    • To Do
    • KATA-2798 - Ensuring no plaintext data is leaked to the host via network when using CoCo
    • 0% To Do, 0% In Progress, 100% Done
    • No
    • 0
    • 0.000

      Epic Goal

      • Reducing attack surface of the guest

      Why is this important?

      • Malicious host may utilize its power and guest enabled features to attack the guest.

      Acceptance Criteria 

      1. ssh is disabled
      2. cloud-init features were reviewed and disabled according risk assessment

      Additional context:

              ssheribe@redhat.com Snir sheriber
              ssheribe@redhat.com Snir sheriber
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: