i am doing an install to test open nebula. After following the firts step i have sunstone running well.
One thing bothers me in the fact that a lot of services listen to the internet with no filtering and i wanted to know what is a risk and if there is any guide on what can be blocked/filtered etc…
tcp 0 0 0.0.0.0:2633 0.0.0.0:* LISTEN 4123/oned
tcp 0 0 0.0.0.0:29876 0.0.0.0:* LISTEN 4442/python2
udp 0 0 0.0.0.0:4124 0.0.0.0:* 4221/collectd
tcp 0 0 0.0.0.0:9869 0.0.0.0:* LISTEN 4423/ruby
I found this one: https://www.youtube.com/watch?v=j7i_RsjFjC4
i am listening to it right now, hope it give some advice here.
How do you secure your opennebula installs when the hosting of your machines are in datacenters like ikoula/ovh and other “public” hosting company ?