Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AWS IMDS V2 Support #238

Closed
ericlarssen-wf opened this issue Oct 8, 2020 · 1 comment · Fixed by #249
Closed

AWS IMDS V2 Support #238

ericlarssen-wf opened this issue Oct 8, 2020 · 1 comment · Fixed by #249
Assignees
@RichVanderwal
Labels
p1 Highest priority work items
Projects
Go Engineering Board Roadmap

Comments

@ericlarssen-wf
Copy link

ericlarssen-wf commented Oct 8, 2020
edited by jodeev
Loading

Summary

AWS has created a newer protocol to communicate with the Metadata server ( context), that enables clients to use a session based request which is more secure. With the idea of deprecating the usage of the V1 protocol, we rely on the agent to no longer use that authentication method.

Desired Behaviour

Adopt the session based authentication with the AWS metadata server.

Describe Alternatives

None that I can think of.

Additional context

https://krebsonsecurity.com/2019/08/what-we-can-learn-from-the-capital-one-hack/
@RichVanderwal
Copy link
Contributor

Hi @ericlarssen-wf , thanks for this request! I've reviewed the Java Agent changes to accept this token and forward it through with the next IMDS request, and now I'll bring our Product Manager in on this one to get her input on how this works with our roadmap.

@jodeev jodeev added this to To Do in Go Engineering Board Oct 20, 2020
@jodeev jodeev added the p1 Highest priority work items label Oct 21, 2020
@RichVanderwal RichVanderwal self-assigned this Nov 12, 2020
@jodeev jodeev closed this as completed Nov 13, 2020
Go Engineering Board automation moved this from To Do to Done Nov 13, 2020
@jodeev jodeev reopened this Nov 13, 2020
Go Engineering Board automation moved this from Done to Triage Nov 13, 2020
@RichVanderwal RichVanderwal moved this from Triage to To Do in Go Engineering Board Nov 19, 2020
@RichVanderwal RichVanderwal added this to Now in Roadmap Nov 21, 2020
@RichVanderwal RichVanderwal moved this from To Do to In progress in Go Engineering Board Nov 23, 2020
@RichVanderwal RichVanderwal linked a pull request Nov 25, 2020 that will close this issue
Implement Amazon's IMDSv2 #249
Merged
@RichVanderwal RichVanderwal moved this from In progress to Done in Go Engineering Board Dec 3, 2020
@jodeev jodeev closed this as completed Dec 19, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@RichVanderwal RichVanderwal

Labels
p1 Highest priority work items
Projects
Go Engineering Board
Done
Roadmap
Now
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Implement Amazon's IMDSv2 RichVanderwal/go-agent
3 participants
@ericlarssen-wf @RichVanderwal @jodeev