How can I disable the metadata API on my droplet ?

February 22, 2015 2.2k views
yrezgui
By:
yrezgui

Hi guys,

I just found that the metadata API is public which is annoying in my case. I’m not putting private information in my user data field, but I still want them to not be seen.

Can you help me?

Sign In to Comment
1 Answer
asb MOD February 23, 2015

Metadata is a service that allows a droplet to access data about itself. The information stored in it about a droplet is only accessible on that droplet. You can find more information about the metadata service in this tutorial:

If you’re concerned about other users that you’ve given access to the droplet seeing what’s in user-data, you can “null-route” the IP address of the metadata service. Adding the following cloud-config script to your user-data on droplet creation will do this automatically:

#cloud-config
disable_ec2_metadata: true
An Introduction to Droplet Metadata
by Mitchell Anicas
Update CloudInit link and conclusion Metadata is a service provided to DigitalOcean droplets that allows a droplet to access data about itself, i.e. its metadata. Examples of available droplet metadata include user-provided user data, droplet ID, data center region,...
Report
Have another answer? Share your knowledge.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!