mirror of
https://git.FreeBSD.org/ports.git
synced 2024-10-19 19:59:43 +00:00
c229fb7438
The imds-filterd tool allows administrators of EC2 instances to lock down which data from the Instance Metadata Service can be accessed by specified system users and groups, thereby making the EC2 Instance Metadata Service compatible with traditional UNIX privilege separation. Reviewed by: otis, dizzy, lwhsu Sponsored by: Tarsnap Backup Inc.
15 lines
435 B
Plaintext
15 lines
435 B
Plaintext
[
|
|
{ type: install
|
|
message: <<EOM
|
|
To enable imds-filterd, add imds_filterd_enable=YES to /etc/rc.conf.
|
|
|
|
To configure imds-filterd, edit $PREFIX/etc/imds.conf.
|
|
|
|
imds-filterd ships with configurations for syslogd and newsyslog which log
|
|
accesses to the Instance Metadata Service to /var/log/imds.log and rotate
|
|
this file upon reaching 1 MB; these settings can be modified via
|
|
$PREFIX/etc/{syslog.d, newsyslog.conf.d}/imds.conf.
|
|
EOM
|
|
}
|
|
]
|