Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

metroctl: safety checks for install ssh #354

Open
lorenz opened this issue Sep 18, 2024 · 0 comments
Open

metroctl: safety checks for install ssh #354

lorenz opened this issue Sep 18, 2024 · 0 comments
Labels
c/ux End-user (cluster operator or user) experience enhancements enhancement New feature or request

Comments

@lorenz
Copy link
Contributor

lorenz commented Sep 18, 2024

metroctl install ssh is very convenient, but it can also be pretty dangerous as-is as it will without a confirmation prompt clear out an existing disk and install Monogon OS over it. It uses the standard SSH keyring, so a single misissued command can use existing credentials and wipe out the root disk of a server.

There should probably be some safeguards if we detect conditions that make the target system a potentially unintentional target. This could be the age of the OS (warn if older than 1 month or so?) or possibly some kind of check for usage. If such a case is detected, a warning should be displayed to the user and they must confirm that it is indeed intended to overwrite that OS.
@lorenz lorenz added enhancement New feature or request c/ux End-user (cluster operator or user) experience enhancements labels Sep 18, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
c/ux End-user (cluster operator or user) experience enhancements enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@lorenz