From: Marius Bakke <mbakke@fastmail.com>
To: ng0 <contact.ng0@cryptolab.net>
Cc: 26548@debbugs.gnu.org
Subject: bug#26548: [PATCH] install: Enable SSH in installation image.
Date: Tue, 18 Apr 2017 01:01:21 +0200 [thread overview]
Message-ID: <87inm2k5a6.fsf@fastmail.com> (raw)
In-Reply-To: <20170417221911.yh3mqezjeoosyt63@abyayala>
[-- Attachment #1: Type: text/plain, Size: 1670 bytes --]
ng0 <contact.ng0@cryptolab.net> writes:
> Marius Bakke transcribed 1.5K bytes:
>> Leo Famulari <leo@famulari.name> writes:
>>
>> > On Mon, Apr 17, 2017 at 11:30:30PM +0200, Marius Bakke wrote:
>> >> Hi Guix! This patch adds an SSH server to the installation image
>> >> to aid remote installations as requested in
>> >> https://lists.gnu.org/archive/html/help-guix/2017-01/msg00047.html
>> >>
>> >> lsh-service depends on networking, so I pulled in a DHCP client too.
>> >> It increases the image size by about 29MiB.
>> >>
>> >> * gnu/system/install.scm (%installation-services): Add DHCP-CLIENT-SERVICE
>> >> and LSH-SERVICE.
>> >
>> > I wonder, did you consider using OpenSSH instead? Are there any
>> > advantages to using lsh here?
>>
>> I chose lsh mostly because I thought the GNU live image should use the
>> GNU ssh implementation. For the intended usage (logging in once with a
>> password to complete the installation), there is no difference to the
>> end user. No strong opinion though :-)
>
>
> Uhm, didn't we choose to default to OpenSSH in the config? Why should the installation
> image differ?
>
> There were good reasons against lsh mentioned in the thread.
The only argument I can see is that ~/.ssh/authorized_keys is not
working out of the box. Which is not a huge problem in the ephemeral
live image since most users will just set a password and use that,
instad of copying over or typing out their public key first.
But, I don't have a strong opinion on this and will leave the decision
to those who will ultimately sign this thing and offer to end users (if
networking support is desired at all) :-)
[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 487 bytes --]
next prev parent reply other threads:[~2017-04-17 23:02 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-04-17 21:30 bug#26548: [PATCH] install: Enable SSH in installation image Marius Bakke
2017-04-17 21:54 ` Leo Famulari
2017-04-17 22:06 ` Marius Bakke
2017-04-17 22:19 ` ng0
2017-04-17 23:01 ` Marius Bakke [this message]
2017-04-18 11:06 ` ng0
2017-04-18 8:43 ` Ludovic Courtès
2017-04-18 11:09 ` ng0
2017-05-08 12:01 ` Marius Bakke
2017-05-10 20:28 ` Ludovic Courtès
2017-05-17 12:14 ` Marius Bakke
2017-05-17 12:15 ` bug#26548: [PATCH v2 1/2] services: openssh: Don't depend on networking Marius Bakke
2017-05-17 12:15 ` bug#26548: [PATCH v2 2/2] install: Enable SSH in installation image Marius Bakke
2017-05-17 21:36 ` Ludovic Courtès
2017-05-17 23:01 ` Marius Bakke
2017-05-17 21:29 ` bug#26548: [PATCH v2 1/2] services: openssh: Don't depend on networking Ludovic Courtès
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://guix.gnu.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87inm2k5a6.fsf@fastmail.com \
--to=mbakke@fastmail.com \
--cc=26548@debbugs.gnu.org \
--cc=contact.ng0@cryptolab.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).