WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] console access for domU owners

from [Stephen Le] [Permanent Link][Original]
To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] console access for domU owners
From: Stephen Le <zeroion@xxxxxxxxx>
Date: Sun, 16 Oct 2005 07:04:12 -0700
Delivery-date: Mon, 17 Oct 2005 08:50:12 +0000
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=BMEqD6fxKlRID9o76dWVf0ByxDGtTopnTchiTznOx+vzKUdrCiMf+Us/aTWIB4enFedIG2RyvKe4XKqVgjajTnmZ61NtxgMH63PUTlcWJy7gr/nJEZzj3REyipQWdF6C+urAZKjaLvTBh8r5KLsDuQnscvG749UmJfAZFQhS0Oc=
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <A95E2296287EAD4EB592B5DEEFCE0E9D32E3E2@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <A95E2296287EAD4EB592B5DEEFCE0E9D32E3E2@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx 
On 10/16/05, Ian Pratt <m+Ian.Pratt@xxxxxxxxxxxx> wrote:
> You can use ssh's forced command facility to allow suitably
> authenticated users to connect to the console on a particular vm.

>From what I've read, it appears that SSH's forced command facility
only works with public key authentication. Given the difficulties of
getting every user to generate a SSH auth key and of managing them, I
don't think such a solution would be very practical.

It appears that my best hope is using, as a login shell, a script that
calls telnet. The script will determine the UID, lookup the
appropriate console port, and launch a telnet session (with the escape
character disabled).

Anybody see anything wrong with that?

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-users] dom0/domU communication, Arijit Ganguly
Next by Date:  Re: [Xen-users] Supported/normal way of creating domains at start-up?, Matus Harvan
Previous by Thread:  RE: [Xen-users] console access for domU owners, Ian Pratt
Next by Thread:  Re: [Xen-users] console access for domU owners, Stephen Le
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy