Re: [PATCH] add a PTY console; & use a UNIX domain socket for better security

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi there,
     A couple of comments.

On Tue, Feb 19, 2013 at 1:58 PM, Kashyap Chamarthy <kchamart@xxxxxxxxxx> wrote:
A couple of small additions:
    - Add a PTY serial console, so that "virsh console foo" works out of the box
      (once the guest is installed).

What's the benefit of doing it this way over using the <console> XML?  I thought they would both enable the serial stuff, but maybe I'm wrong.
 
    - Use a UNIX domain socket server (for better security) as a character
      device instead of a TCP port.

I'm not opposed to this in principle, though I think we probably need more work to make it work properly.  In particular, I'm pretty sure "_wait_for_guest_boot" will have to be modified to listen over the unix domain socket instead of the listen_port (at which point we can remove the listen_port completely).  You can test it out by running oz-install with -u or -g to do customization/icicle generation, respectively.
 
Thanks,
Chris
_______________________________________________
cloud mailing list
cloud@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/cloud
[Index of Archives]     [Fedora General Discussion]     [Older Fedora Users Archive]     [Fedora Advisory Board]     [Fedora Security]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [ATA RAID]     [Fedora Marketing]     [Fedora Mentors]     [Fedora Package Announce]     [Fedora Package Review]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Coolkey]     [Yum Users]     [Big List of Linux Books]     [Yosemite News]     [Linux Apps]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Asterisk PBX]

  Powered by Linux