From: ludo@gnu.org (Ludovic Courtès)
To: Julien Lepiller <julien@lepiller.eu>
Cc: guix-devel <guix-devel@gnu.org>
Subject: Re: [PATCH] openssh service
Date: Mon, 29 Aug 2016 17:06:21 +0200 [thread overview]
Message-ID: <87poor1uoi.fsf@gnu.org> (raw)
In-Reply-To: <20160819163125.0be91283@polymos> (Julien Lepiller's message of "Fri, 19 Aug 2016 16:31:25 +0200")
Hi Julien,
I just discovered this patch as I go through my backlog, which is fun
because I used sshd as an example to illustrate how GuixSD services work
just a week ago. :-)
Julien Lepiller <julien@lepiller.eu> skribis:
> +@deffn {Scheme Procedure} openssh-service [#:pidfile "/var/run/sshd.pid"] @
#:pid-file
> + [#:port-number 22] [#:root-login "without-password"] @
> + [#:allow-empty-passwords #f] [#:password-authentication? #t] @
> + [#:pubkey-authentication? #t] [#:rsa-authentication? #t] @
> + [#:x11-forwarding? #f] [#:protocol-number "2"]
I agree with Andy’s latest comments regarding naming.
Also, make sure to consistently use question marks for Boolean options,
as in #:allow-empty-passwords?.
Last thing, I would prefer to expose and document
<openssh-configuration>, as is done for Dropbear. We should encourage
this style now, IMO.
(In commit 39012aab3333868d5ab3b39c95682f95212437e2 I enabled PAM
support in OpenSSH, though it’s off by default; maybe in a future patch
we can add #:pam-support?.)
> --- a/gnu/packages/ssh.scm
> +++ b/gnu/packages/ssh.scm
> @@ -142,7 +142,8 @@ a server that supports the SSH-2 protocol.")
> ("zlib" ,zlib)
> ("xauth" ,xauth))) ;for 'ssh -X' and 'ssh -Y'
> (arguments
> - `(#:test-target "tests"
> + `(#:configure-flags `("--sysconfdir=/etc/ssh")
> + #:test-target "tests"
I committed this part independently as
af493726ce16483bd09ed7f73028bab3294131e2. :-)
> +When @var{x11-forwarding} is true, @command{ssh} options -X and -Y will work."
@option{-X} and @option{-Y}.
These are all cosmetic details. If you prefer I can do it on your
behalf, just let me know; otherwise, please send an updated patch.
Thank you for your work!
Ludo’.
prev parent reply other threads:[~2016-08-29 15:06 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-08-05 12:18 [PATCH] openssh service Julien Lepiller
2016-08-05 13:47 ` Andy Wingo
2016-08-05 14:20 ` Julien Lepiller
2016-08-19 14:03 ` Julien Lepiller
2016-08-19 14:15 ` Vincent Legoll
2016-08-19 14:31 ` Julien Lepiller
2016-08-26 10:51 ` Andy Wingo
2016-09-26 16:42 ` Julien Lepiller
2016-09-29 21:15 ` Ludovic Courtès
2016-10-02 22:42 ` Ludovic Courtès
2016-10-03 16:01 ` Ludovic Courtès
2016-08-29 15:06 ` Ludovic Courtès [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87poor1uoi.fsf@gnu.org \
--to=ludo@gnu.org \
--cc=guix-devel@gnu.org \
--cc=julien@lepiller.eu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/guix.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.