etcd icon indicating copy to clipboard operation
etcd copied to clipboard

Published 20 hours ago verified publisher icon etcd-io

etcd has no mechanism to prevent brute force cracking

Open SingleThread opened this issue 3 years ago • 1 comments

etcd does not limit the number of connections with incorrect passwords, which may lead to the cracking of the administrator password, which poses a certain security risk.

SingleThread avatar Sep 09 '22 07:09 SingleThread

You can create a user with no password based authentication with etcdctl user add <user name> --no-password. Such a user only allows CN based authnz. If you really want to avoid the brute force risk, I think it works for the purpose.

mitake avatar Sep 09 '22 11:09 mitake

CN based authnz

hi @mitake , could you please give more steps on authnz, thanks a lot.

xiaods avatar Oct 04 '22 07:10 xiaods

This issue has been automatically marked as stale because it has not had recent activity. It will be closed after 21 days if no further activity occurs. Thank you for your contributions.

stale[bot] avatar Jan 07 '23 17:01 stale[bot]