Puppet users - Feb 2011 - fileserver.conf and security

Hi guys,

I have a question about fileserver.conf and security. I see that
fileserver.conf has acl based on hostname and ipaddress, but there is
nothing about authenticantion. My consern is about rogue acess. Can
anyone without SSL authenticantion have access to my puppetfiles if i
allow * on fileserver.conf?

Thanks

Sky

-- 
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscribe@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.

On Sun, Feb 27, 2011 at 10:00 AM, Sky <skyshade@gmail.com>
wrote:
> Hi guys,
>
> I have a question about fileserver.conf and security. I see that
> fileserver.conf has acl based on hostname and ipaddress, but there is
> nothing about authenticantion. My consern is about rogue acess. Can
> anyone without SSL authenticantion have access to my puppetfiles if i
> allow * on fileserver.conf?
No, the ACLs apply on top of SSL authentication.

-- 
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscribe@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.