Details
-
Improvement
-
Status: Open
-
Major
-
Resolution: Unresolved
-
None
-
None
-
None
-
None
Description
This is an umbrella issue for a set of tasks designed to make clusters started by Whirr fairly secure by default. Some of the things I have in mind are: do not open service ports by default - specify the needed ones in the .properties file and in tests, run services as non-root users, make the firewall work on all the supported cloud providers (e.g. we don't do this for cloudservers).