erincandescent on Nostr: TIL: Scaleways’ instance metadata service requires your source port for the HTTP ...
TIL: Scaleways’ instance metadata service requires your source port for the HTTP request be <1024 and
This is actually a big security improvement over everyone else’s because now your instance metadata (potentially containing secrets or credentials) is only accessible by root on the VM and not by any random process, and
This is just about the only valid use of the root port restriction I’ve seen since 1990
Published at
2024-06-16 17:20:09Event JSON
{
"id": "51a9438e93c399aa5b6135c25ae681420d1df8b597459f401325c2dd1c84925b",
"pubkey": "525c26d79e9be523b836ae6784c41096cdd20040a8a6d3826c478bb97a555dc9",
"created_at": 1718558409,
"kind": 1,
"tags": [
[
"proxy",
"https://akko.erincandescent.net/objects/c6744abf-bff2-4038-acf8-51bd5df2e797",
"activitypub"
]
],
"content": "TIL: Scaleways’ instance metadata service requires your source port for the HTTP request be \u003c1024 and\n\nThis is actually a big security improvement over everyone else’s because now your instance metadata (potentially containing secrets or credentials) is only accessible by root on the VM and not by any random process, and\nThis is just about the only valid use of the root port restriction I’ve seen since 1990",
"sig": "456e5d1730bc0347da44606f384a8941ff10539da1794118025a7959978d81b9a85a654b2fe57bc6288f9b9656a2f44fa847e89d0a797b075cc07c90521a0922"
}