Closed Bug 722448 Opened 8 years ago Closed 8 years ago

Close PasswordAuth ssh access on cn-sea-qm-centos5-01.nl.mozilla.org

Categories

(SeaMonkey :: Release Engineering, defect, critical)

defect
Not set
critical

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: Callek, Assigned: Callek)

Details

Ok, I just got poked by infrasec about our cn-* hosts having password auth enabled for ssh.

I did disable it just now, but that also means that other than me, only people with the seabld key locally can log in to it via ssh, thats unacceptable (as I don't want the seabld key spread around if we can help it)

I will add all relevant users to the authorized_keys file here, KaiRo and Ewong can you please attach your pub-keys to this bug so I can do that?
Well, the real issue is that those .nl hosts are publicly accessible and not behind the community jumphost, as then this would be completely OK.

attachment 228698 [details] has my public key.
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
All 3 of us, and the seabld key can login to this machine now.
You need to log in before you can comment on or make changes to this bug.