From mboxrd@z Thu Jan 1 00:00:00 1970 From: ng0 Subject: Re: Advice about GuixSD on Serveraptor? Date: Fri, 24 Mar 2017 16:34:47 +0000 Message-ID: <20170324163447.dmrtjiulnhhjx7q2@abyayala> References: <20170213214717.GA11352@jasmine> <20170313003252.GA12094@jasmine> <20170321180638.GA3027@jasmine> <87mvcenzvw.fsf@dustycloud.org> <20170321204620.GA30143@jasmine> <20170321210609.rmugh5l26eqicrhd@abyayala> <20170322171538.GA6011@jasmine> <20170322192023.ij2mzykimne7lfii@abyayala> <20170322210106.f6z7vwavsna3qfg4@abyayala> <87k27fcmwx.fsf@gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:57352) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1crQIv-0007aH-KN for guix-devel@gnu.org; Fri, 24 Mar 2017 10:35:02 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1crQIs-0000zB-Cb for guix-devel@gnu.org; Fri, 24 Mar 2017 10:35:01 -0400 Received: from latitanza.investici.org ([2001:888:2000:56::19]:51836) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1crQIs-0000yw-2y for guix-devel@gnu.org; Fri, 24 Mar 2017 10:34:58 -0400 Content-Disposition: inline In-Reply-To: <87k27fcmwx.fsf@gmail.com> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: Chris Marusich Cc: guix-devel@gnu.org Chris Marusich transcribed 2.4K bytes: > ng0 writes: > > > If IN-Berlin uses (or needs) nothing special for the consoleserver to > > make use of the virtual servers within IN-Berlin infrastructure, I think > > it would be best if we (as Guix) could provide an extended bare image > > for servers which would include ssh-daemon on default port with password > > login enabled, where the password is not empty. That's a workaround I > > can imagine to be generic enough for all use cases. > > For the one of IN-Berlin and maybe similar hosters who use ssh pubkeys, > > it would be great to document for them how to recreate this image in > > easy steps and insert the clients ssh pubkey for the root account (or an > > named user) on the system. > > > > What do you think about this? > > Instead of providing a pre-built image of a specific system with > pre-built credentials, wouldn't it be better to add a feature that, in > the spirit of a command like 'guix disk-image', builds an entire system > that can then be imported as-is into IN-Berlin? > > In general, such a feature would be useful. One can imagine leveraging > a feature like this to import custom GuixSD systems into various hosting > services - Amazon EC2, Rackspace, wherever. Instead of starting with a > pre-built image that might be hard to reproduce or verify, and then > mutating that system to suit your needs, you could just import the exact > system that you want to deploy. Wouldn't that be better? > > -- > Chris Their system works in the way that you provide the key and they give you access via ssh to the new server. My suggestion was a work-around. Beyond that, can you please explain what exactly you mean? I don't want to read between the lines as there are multiple ways I could interpret this message.