From: Andy Wingo <wingo@igalia.com>
To: Julien Lepiller <julien@lepiller.eu>
Cc: guix-devel <guix-devel@gnu.org>
Subject: Re: [PATCH] openssh service
Date: Fri, 26 Aug 2016 12:51:56 +0200 [thread overview]
Message-ID: <8737lrby5v.fsf@igalia.com> (raw)
In-Reply-To: <20160819163125.0be91283@polymos> (Julien Lepiller's message of "Fri, 19 Aug 2016 16:31:25 +0200")
Hi Julien,
Thanks for the documentation update!
On Fri 19 Aug 2016 16:31, Julien Lepiller <julien@lepiller.eu> writes:
> +@deffn {Scheme Procedure} openssh-service [#:pidfile "/var/run/sshd.pid"] @
> + [#:port-number 22] [#:root-login "without-password"] @
> + [#:allow-empty-passwords #f] [#:password-authentication? #t] @
> + [#:pubkey-authentication? #t] [#:rsa-authentication? #t] @
> + [#:x11-forwarding? #f] [#:protocol-number "2"]
> +"Run the @command{sshd} program from @var{openssh} on port @var{port-number}.
> +@command{sshd} runs an ssh daemon and writes its PID to @var{pidfile}. It
> +understands ssh protocol @var{protocol-number}. The @var{protocol-number} can
> +be one of \"1\", \"2\" or \"1,2\".
> +
> +@var{PermitRootLogin} takes one of @var{yes}, @var{without-password} and
> +@var{no}. It is used to allow root login through ssh. @var{without-password}
> +means that root login is allowed, except when loging with a password (eg: a
> +public key).
The variable needs to be changed to @var{root-login} (and I think
probably @var{permit-root-login} would be more expected), and probably
"without-password" should be a symbol rather than a string. In general
I think naming the keywords after the upstream options is going to be
the least confusing thing for users. Consider changing from
yes/no/without-password to #t/#f/without-password, and renaming the
option to #:permit-root-login?. Consider requiring that the protocol
number be either 1 or 2. In general we want to make errors happen
early, when building the OS, rather than when the OS is booted.
WDYT?
Andy
next prev parent reply other threads:[~2016-08-26 10:52 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-08-05 12:18 [PATCH] openssh service Julien Lepiller
2016-08-05 13:47 ` Andy Wingo
2016-08-05 14:20 ` Julien Lepiller
2016-08-19 14:03 ` Julien Lepiller
2016-08-19 14:15 ` Vincent Legoll
2016-08-19 14:31 ` Julien Lepiller
2016-08-26 10:51 ` Andy Wingo [this message]
2016-09-26 16:42 ` Julien Lepiller
2016-09-29 21:15 ` Ludovic Courtès
2016-10-02 22:42 ` Ludovic Courtès
2016-10-03 16:01 ` Ludovic Courtès
2016-08-29 15:06 ` Ludovic Courtès
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=8737lrby5v.fsf@igalia.com \
--to=wingo@igalia.com \
--cc=guix-devel@gnu.org \
--cc=julien@lepiller.eu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/guix.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.