Skip to content

Etcd salt defaults file is confusingly not used. #6081

New issue
New issue
Closed
Closed
Etcd salt defaults file is confusingly not used.#6081
Labels
area/etcdpriority/awaiting-more-evidenceLowest priority. Possibly useful, but not yet enough support to actually get it done.
@erictune

Description

@erictune
erictune
opened on Mar 27, 2015

Commit ba74928 by
@davidopp says:
Have etcd listen on all interfaces so that monit probes succeed. Closes #3852.

Listening on all interfaces is the wrong thing to do from a security standpoint because it exposes etcd to modification.

Once @ArtfulCoder change to put etcd in a pod is complete, then kubelet can monitor instead of monit, so then etc can be on 127.0.0.1.

It is confusing, because DAEMON_ARGS is set in cluster/saltbase/salt/etcd/defaults, which is where you normally set those things. But that file is only pushed to the node by cluster/saltbase/salt/etcd/init.sls if the OS is red-hat. What a mess.

Activity

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/etcdpriority/awaiting-more-evidenceLowest priority. Possibly useful, but not yet enough support to actually get it done.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions