[PetiteCloud] how much security?

Michael Thoreson m.thoreson at c4labs.ca
Thu Feb 13 13:59:51 PST 2014 

Single admin will only work with hobbiest, extreme home users and small 
firms. Big firms will want multiple admins for accountability and 
central management of those admins be it something in PC itself or an 
AD\LDAP setup.

If you have even 2 admins using a single admin account, how do you 
figure out who did what in the event an admin decided to be malicious.

Michael Thoreson,

On 13/02/2014 3:43 PM, Aryeh Friedman wrote:
> These all seem like great plugins but I am a little hesitant to bring 
> such a large layer 1 service down in to the foundation... better might 
> be to offer an API for the layer 1 to control it... for DIY clouds the 
> admin can pick whatever they want but my personal recommendation would 
> be if possible a single admin and users use instances not PC it self
>
>
> On Thu, Feb 13, 2014 at 4:35 PM, Michael Thoreson 
> <m.thoreson at c4labs.ca <mailto:m.thoreson at c4labs.ca>> wrote:
>
>     Password authentication would be sufficient in the early stages
>     but perhaps there should be minimum length and complexity
>     requirements. Also make sure that whatever password storage back
>     end used will store the passwords safely and effectively. Adding
>     AD and LDAP support would be of big interest in companies. The
>     support can either be direct PC to AD\LDAP or perhaps PC could
>     have an option to use to already existing host users and groups
>     which would include AD\LDAP users if the host is setup before
>     hand. This is of course won't work if the idea of PC is going to
>     be including it's own OS, but I assume PC will just be installed
>     on whatever host OS the admin chooses.
>
>     Michael Thoreson,
>
>
>
>     On 13/02/2014 11:39 AM, Aryeh Friedman wrote:
>
>         If petitecloud's goal is only to control stuff at level 0
>         (even if in large clusters) then it is almost certain the only
>         login would be from the admins and only then if something went
>         wrong (we assume that layer 1 will be controlling us via an
>         API) whould they login... given the above is just having a
>         single password good enough security (for now)... i..e no
>         users, tenants, etc.... the idea is we can skip right to
>         clustering then come back to security as we start to need
>         handle  multiple users all with the same level of access.
>
>         -- 
>         Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org
>
>
>         _______________________________________________
>         petitecloud-general mailing list
>         petitecloud-general at lists.petitecloud.nyclocal.net
>         <mailto:petitecloud-general at lists.petitecloud.nyclocal.net>
>         http://lists.petitecloud.nyclocal.net/listinfo.cgi/petitecloud-general-petitecloud.nyclocal.net
>
>
>     _______________________________________________
>     petitecloud-general mailing list
>     petitecloud-general at lists.petitecloud.nyclocal.net
>     <mailto:petitecloud-general at lists.petitecloud.nyclocal.net>
>     http://lists.petitecloud.nyclocal.net/listinfo.cgi/petitecloud-general-petitecloud.nyclocal.net
>
>
>
>
> -- 
> Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org
>
>
> _______________________________________________
> petitecloud-general mailing list
> petitecloud-general at lists.petitecloud.nyclocal.net
> http://lists.petitecloud.nyclocal.net/listinfo.cgi/petitecloud-general-petitecloud.nyclocal.net

More information about the petitecloud-general mailing list