|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Xen-devel] Suggestion for merging xl save/restore/migrate/migrate-receive
On Tue, Sep 24, 2013 at 5:46 PM, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx> wrote: >> >>>* In order to migrate a VM without user interactive, we have to configure >> >>>ssh >> >>> keys for all Servers in a pool. Key management brings complexity. >> >> >> >>Surely your automated server deployment system can manage this ? >> > >> >Yes, we can. >> > >> >keys are states; we need to make sure they are always sync. Also after this, >> >all Servers in a pool can login to each other. I don't know whether it's >> >a security issue for our product. >> > >> >This is something we try to avoid at this time. >> >> ...so instead of allowing anyone on one of the hosts log in, you're >> going to allow anyone with access to the network to create a VM >> without any kind of authentication? >> >> From a security perspective, that doesn't really sound like an >> improvement... >> > > How did this work with 'xend' and its migration using SSL? Was it as > simple as this ? I have no idea -- Matt, do you know / would you care to take a look and find out (since you have expressed a willingness to maintain xend)? -George _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxx http://lists.xen.org/xen-devel
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |