Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-52582

AMI includes batmat ssh public key

    XMLWordPrintable

    Details

    • Similar Issues:
    • Sprint:
      Evergreen - Milestone 1

      Description

      AMI ami-cfe4b2b0-with-docker-18.03.1 (ami-0b32af9c4a966ea17) includes batmat-foundational-services-dev ssh key and shouldn't

        Attachments

          Activity

          Hide
          batmat Baptiste Mathus added a comment -

          OK, lowering priority finally. I thought I had put a private key. I actually wasn't careful enough and forgot the authorized_keys. So it woould give me access to any Essentials box. So, while this absolutely needs fixing, it's not "Blocker" per se as we do not, and can not yet, have users (as the actual backend is not deployed yet, and some core critical services are still to be developed).

          Show
          batmat Baptiste Mathus added a comment - OK, lowering priority finally. I thought I had put a private key. I actually wasn't careful enough and forgot the authorized_keys . So it woould give me access to any Essentials box. So, while this absolutely needs fixing, it's not "Blocker" per se as we do not, and can  not yet, have users (as the actual backend is not deployed yet, and some core critical services are still to be developed).
          Hide
          batmat Baptiste Mathus added a comment -

          After discussing this with R. Tyler Croy, we want to change strategy here: we shouldn't have to be maintaining an official AMI for the Jenkins Essentials initiative. With limited resources, and focus we want to have, we should be using an officially published AMI.

          So, I'll search for one more carefully to hopefully find one, and going to reopen JENKINS-52336 and JENKINS-52337 to track this.

          Show
          batmat Baptiste Mathus added a comment - After discussing this with R. Tyler Croy , we want to change strategy here: we shouldn't have to be maintaining an official AMI for the Jenkins Essentials initiative. With limited resources, and focus we want to have, we should be using an officially published AMI. So, I'll search for one more carefully to hopefully find one, and going to reopen JENKINS-52336 and JENKINS-52337 to track this.
          Hide
          batmat Baptiste Mathus added a comment -

          After a search yesterday, I could not find an image that is providing Docker OOTB and maintained by a well known entity (AWS or Docker Inc, for instance). So we are, at least for now, going to use userData to run the necessary configuration and package installations during startup.

          Show
          batmat Baptiste Mathus added a comment - After a search yesterday, I could not find an image that is providing Docker OOTB and maintained by a well known entity (AWS or Docker Inc, for instance). So we are, at least for now, going to use userData to run the necessary configuration and package installations during startup.
          Hide
          batmat Baptiste Mathus added a comment -

          Resolved by using ami-cfe4b2b0 for both the master and agents, then init scripts to install the missing package for each case.

          Show
          batmat Baptiste Mathus added a comment - Resolved by using ami-cfe4b2b0 for both the master and agents, then init scripts to install the missing package for each case.

            People

            Assignee:
            batmat Baptiste Mathus
            Reporter:
            csanchez Carlos Sanchez
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: