Google計算機引擎中的/ home/gke中的未知用戶

Question

我在Google Cloud實例中選擇的是新系統用戶。 格式爲：/home/gke-xxxxxxxxxx

這些用戶出現在基於Debian和Google Container Engine的Linux實例中。

例如：

root@node1:/home# ls -lh 
total 24K 
drwxr-xr-x 3 gke-34cf46593ebc10a5beb5 gke-34cf46593ebc10a5beb5 4.0K Sep 29 04:18 gke-34cf46593ebc10a5beb5 
drwxr-xr-x 3 gke-b230f34ceeb7c905fdb6 gke-b230f34ceeb7c905fdb6 4.0K Sep 29 04:18 gke-b230f34ceeb7c905fdb6 



root@node1:/etc# cat /etc/passwd | grep gke 
gke-34cf46593ebc10a5beb5:x:1021:1022::/home/gke-34cf46593ebc10a5beb5:/bin/bash 
gke-b230f34ceeb7c905fdb6:x:1022:1023::/home/gke-b230f34ceeb7c905fdb6:/bin/bash 


root@node1:/etc# cat /etc/group | grep gke 
adm:x:4:gke-34cf46593ebc10a5beb5,gke-b230f34ceeb7c905fdb6 
dip:x:30:gke-34cf46593ebc10a5beb5,gke-b230f34ceeb7c905fdb6 
video:x:44:gke-34cf46593ebc10a5beb5,gke-b230f34ceeb7c905fdb6 
plugdev:x:46:gke-34cf46593ebc10a5beb5,gke-b230f34ceeb7c905fdb6 
google-sudoers:x:1000:gke-34cf46593ebc10a5beb5,gke-b230f34ceeb7c905fdb6 
gke-34cf46593ebc10a5beb5:x:1022: 
gke-b230f34ceeb7c905fdb6:x:1023: 

這是一塊日誌中：/var/log/auth.log

Sep 29 04:18:57 node1 useradd[11226]: new group: name=gke-34cf46593ebc10a5beb5, GID=1022 
Sep 29 04:18:57 node1 useradd[11226]: new user: name=gke-34cf46593ebc10a5beb5, UID=1021, GID=1022, home=/home/gke-34cf46593ebc10a5beb5, shell=/bin/bash 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to group 'adm' 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to group 'dip' 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to group 'video' 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to group 'plugdev' 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to group 'google-sudoers' 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to shadow group 'adm' 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to shadow group 'dip' 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to shadow group 'video' 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to shadow group 'plugdev' 
Sep 29 04:18:57 node1 usermod[11231]: add 'gke-34cf46593ebc10a5beb5' to shadow group 'google-sudoers' 
Sep 29 04:18:57 node1 useradd[11236]: new group: name=gke-b230f34ceeb7c905fdb6, GID=1023 
Sep 29 04:18:57 node1 useradd[11236]: new user: name=gke-b230f34ceeb7c905fdb6, UID=1022, GID=1023, home=/home/gke-b230f34ceeb7c905fdb6, shell=/bin/bash 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to group 'adm' 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to group 'dip' 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to group 'video' 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to group 'plugdev' 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to group 'google-sudoers' 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to shadow group 'adm' 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to shadow group 'dip' 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to shadow group 'video' 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to shadow group 'plugdev' 
Sep 29 04:18:57 node1 usermod[11241]: add 'gke-b230f34ceeb7c905fdb6' to shadow group 'google-sudoers' 

我懷疑這是從谷歌雲內部的一些事情。 防火牆不允許我的授權IP以外的SSH連接。 這些用戶出現的原因是什麼？

謝謝大家。

Answer 1

在項目中創建GKE集羣時，它還會在項目元數據中添加與其關聯的SSH密鑰。這些SSH密鑰可以通過轉到Google雲端控制檯 - >計算引擎 - >元數據 - > SSH密鑰來顯示。

Project-Wide SSH keys與GKE集羣部署期間創建的一樣，將被傳輸到項目中的所有實例，除非該實例被定義爲與specific keys一起使用。這些密鑰被複制到每個用戶的每個VM的主目錄中（/home/user/.ssh）。當您刪除GKE部署時，將從元數據中刪除SSH密鑰。從元數據中刪除的密鑰也從/home/user/.ssh/authorized_keys中刪除。不要在虛擬機上刪除用戶的主目錄。