Block access to link-local addresses from containers by default #8990
Labels
area/security
priority/backlog
Higher priority than priority/awaiting-more-evidence.
sig/network
Categorizes an issue or PR as relevant to SIG Network.
Comments
bgrant0607
added
priority/backlog
|
Actually, the GCE API doesn't require the metadata server. The client just needs to explicitly provide the credentials in that case. |
|
They don't require it, but manually managing (distributing, revoking, and rotating) service accounts and their credentials is a big step back IMO. If the secrets API can be jiggered to help here, great, just anything to keep folks from including keys in their images. |
|
Dupe of #8867. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
GCE and AWS expose local metadata servers on a link-local address (169.254.169.254). This compromises isolation of containers from hosts and from the cluster. As with host ports, host networking, host paths, etc., we shouldn't expose these addresses by default. Authorization should be required.
Sadly, Google API clients apparently require metadata access currently, as reported in #8512.
cc @thockin @erictune @evandbrown
The text was updated successfully, but these errors were encountered: