search for: listen_addr

...ed_Hat_Enterprise_Linux/6/html/Virtualization_Host_Configuration_and_Guest_Installation_Guide/App_Migration_Address.html We have managed to work around this by setting the flag to include “VIR_MIGRATE_TUNNELLED”. However, it is noticebaly slower than non tunnelled. We were hoping that setting the listen_addr would get libvirt to return the listen_addr rather than the hostname but virGetHostname in libvirt/src/util/virutil.c doesn’t have access to the config structure. I was wondering if libvirt can be patched in a way to return the ip address of the destination instead of the hostname during migration...

...* Connect to 'host'. */ u_short port_to_connect; /* Connect to 'port'. */ u_short listen_port; /* Remote side should listen port number. */ @@ -2146,8 +2147,7 @@ char ntop[NI_MAXHOST], strport[NI_MAXSERV]; success = 0; - host = (type == SSH_CHANNEL_RPORT_LISTENER) ? - listen_addr : host_to_connect; + host = host_to_connect; if (host == NULL) { error("No forward host name."); @@ -2167,7 +2167,8 @@ hints.ai_flags = gateway_ports ? AI_PASSIVE : 0; hints.ai_socktype = SOCK_STREAM; snprintf(strport, sizeof strport, "%d", listen_port); - if (getad...

...settings for configuring remote control in ubuntu (setting flags in libvirt setting files). Now I have several questions: 1) Are these flags the same for Centos? They did not worked for me. My flags for ubuntu are (for tcp for example): /etc/libvirt/libvirtd.conf : listen_tls = 0, listen_tcp = 1, listen_addr = "0.0.0.0 " auth_- tcp = "none " /etc/init/libvirt-bin.conf: add -l (listen) : env libvirtd_opts = d -l" /etc/default/libvirt-bin add -l : libvirtd_opts = d -l" 2) Can the remote control be configured along with local on one machine? For example, in one configuration...

I was wondering what everyone's thoughts were on a simpler way to exclude addresses from having listeners on them. I know a lot of people have multiple subnets, especially larger corporations. Some networks are non-route-able, and therefor unsuitable for use with SSH, aside from communication between other servers on the same subnet. Given that we may want to exclude those non-route-able

Hi, Is there any way to store HostKey in hardware (and delegate the related processing)? I have been using Roumen Petrov's x509 patch for clients, which works via an OpenSSL engine, but it does not seem to support server HostKey: http://roumenpetrov.info/pipermail/ssh_x509_roumenpetrov.info/2012q4/000019.html For PKCS#11, I have found an email on this list from a year back suggesting this

Could people please test -current? We will be making a release fairly soon. -d -- | By convention there is color, \\ Damien Miller <djm at mindrot.org> | By convention sweetness, By convention bitterness, \\ www.mindrot.org | But in reality there are atoms and space - Democritus (c. 400 BCE)

...trol in ubuntu > (setting flags in libvirt setting files). Now I have several questions: > > 1) Are these flags the same for Centos? > They did not worked for me. > My flags for ubuntu are (for tcp for example): > > /etc/libvirt/libvirtd.conf : listen_tls = 0, listen_tcp = 1, listen_addr = > "0.0.0.0 " auth_- > tcp = "none " These configuration options are the same in all distros. But, listening on TCP without any encryption and authentication is very dangerous and it should not be used. A connection to system libvirtd is equivalent to having a root accou...

...bvirt-0.8.1 Here's the command I'm using, --------- $ virsh -c qemu+ssh://kvmhost.tld/system error: packet received from server too large error: failed to connect to the hypervisor Here's the uncommented lines in my /etc/libvirt/libvirtd.conf ----------- listen_tls = 1 listen_tcp = 0 listen_addr = "...." (set to eth0) key_file = "/var/lib/puppet/ssl/private_keys/kvmhost.tld.pem" cert_file = "/var/lib/puppet/ssl/certs/kvmhost.tld.pem" ca_file = "/var/lib/puppet/ssl/certs/ca.pem" log_level = 1 log_filters="1:remote 1:event" log_outputs="...

...at error : virNetSocketNewListenUNIX:346 : Failed to bind socket to '/var/run/libvirt/libvirt-sock': Permission denied I have removed some requested comments in libvirtd.conf. The key settings are shown as below: listen_tcp = 1 tcp_port = "16509" listen_addr = "0.0.0.0" unix_sock_group = "root" unix_sock_rw_perms = "0770" unix_sock_ro_perms = "0777" unix_sock_dir = "/var/run/libvirt" Is there any thing wrong? Need I start libvirtd by root? Thanks a lot!...

Hi, I have couple of RHEV hosts (ovpxen,RHV2, RHV10 etc) and i'm trying to connect from one of the client machine (C1). All the RHEV host have libvirt modified by vdsm. It looks like the below ## beginning of configuration section by vdsm-4.10.2 listen_addr="0.0.0.0" unix_sock_group="kvm" unix_sock_rw_perms="0770" auth_unix_rw="sasl" host_uuid="036118ab-705f-4aeb-9a13-013dc8af6b41" keepalive_interval=-1 log_outputs="1:file:/var/log/libvirtd.log" log_filters="3:virobject 3:virfile 2:virne...

http://bugzilla.mindrot.org/show_bug.cgi?id=1037 Summary: Man page for -L and -R should mention -g Product: Portable OpenSSH Version: 4.0p1 Platform: All OS/Version: All Status: NEW Severity: trivial Priority: P5 Component: Documentation AssignedTo: bitbucket at mindrot.org ReportedBy:

Hi, This is a proof of concept of GPU forwarding for Linux guest on Linux host. I'd like to get comments and suggestions from community before I put more time on it. To summarize what it is: 1. It's a solution to bring GPU acceleration for Linux vm guest on Linux host. It could works with different GPU although the current proof of concept only works with Intel GPU. 2. The basic idea

Hello, I came across an interoperability problem in OpenSSH 3.0p1 and 3.0.1p1 concerning the AFS token forwarding. That means that the new versions are not able to exchange AFS tokens (and Kerberos TGTs) with older OpenSSH releases (including 2.9p2) and with the old SSH 1.2.2x. In my opinion this problem already existed in Openssh 2.9.9p1, but I have never used this version (I only looked at the

...nothing on the remote system happens, and no errors are displayed, (hostname changed) $ virsh --debug 5 --log /var/lib/foreman/virsh.log -c qemu+ssh://foreman at kvmhost.tld:16509/system?no_tty=1 This is the uncommented lines in /etc/libvirt/libvirtd.conf ---------- listen_tls = 0 listen_tcp = 1 listen_addr = "<omitted, set to management NIC>" log_level = 1 log_filters="1:remote 1:event 1:qemu" log_outputs="1:syslog:libvirtd 1:file:/var/log/libvirt/libvirtd.log" This is the only debug output I get in /var/log/libvirt/libvirtd.log during the remote connection attem...

...ller at siemens.com Starting ssh with the option -R 127.0.0.2:10443:<dest ip>:443 results in opening listeners on the <dest ip> with listener ip 127.0.0.1, ::1 and not 127.0.0.2 Adding the following code to channels.c after line 2660 } else if (host) { addr = listen_addr; results in having the sshd start the 127.0.0.2 listener. Maybe there has to be some check against the GatewayPorts option as well. -- Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching the assignee of the...

...ty log_facility_number(char *); LogLevel log_level_number(char *); diff -urN openssh-3.5p1-orig/servconf.c openssh-3.5p1/servconf.c --- openssh-3.5p1-orig/servconf.c 2002-12-18 10:10:13.000000000 -0500 +++ openssh-3.5p1/servconf.c 2002-12-18 10:20:33.000000000 -0500 @@ -64,6 +64,7 @@ options->listen_addrs = NULL; options->num_host_key_files = 0; options->pid_file = NULL; + options->log_file = NULL; options->server_key_bits = -1; options->login_grace_time = -1; options->key_regeneration_time = -1; @@ -302,6 +303,7 @@ sHostbasedUsesNameFromPacketOnly, sClientAliveInterva...

...: servconf.c =================================================================== RCS file: /cvs/src/usr.bin/ssh/servconf.c,v retrieving revision 1.165 diff -u -r1.165 servconf.c --- servconf.c 14 Aug 2006 12:40:25 -0000 1.165 +++ servconf.c 15 Nov 2006 14:14:37 -0000 @@ -56,6 +56,7 @@ options->listen_addrs = NULL; options->address_family = -1; options->num_host_key_files = 0; + options->ca_key_file = NULL; options->pid_file = NULL; options->server_key_bits = -1; options->login_grace_time = -1; @@ -77,6 +78,7 @@ options->hostbased_authentication = -1; options->ho...

...6 +++ servconf.c 24 Apr 2002 01:03:20 -0000 @@ -55,10 +55,6 @@ { memset(options, 0, sizeof(*options)); - /* Portable-specific options */ - options->pam_authentication_via_kbd_int = -1; - - /* Standard Options */ options->num_ports = 0; options->ports_from_cmdline = 0; options->listen_addrs = NULL; @@ -129,11 +125,6 @@ void fill_default_server_options(ServerOptions *options) { - /* Portable-specific options */ - if (options->pam_authentication_via_kbd_int == -1) - options->pam_authentication_via_kbd_int = 0; - - /* Standard Options */ if (options->protocol == SSH_PROTO...

Hi All. For various reasons, we're currently looking at extending (or even overhauling) the config parser used for sshd_config. Right now the syntax I'm looking at is a cumulative "Match" keyword that matches when all of the specified criteria are met. This would be similar the the Host directive used in ssh_config, although it's still limiting (eg you can't easily

...********* *** 451,456 **** --- 466,472 ---- struct sockaddr_storage from; const char *remote_ip; int remote_port; + const char *remote_hostname; FILE *f; struct linger linger; struct addrinfo *ai; *************** *** 753,758 **** --- 769,777 ---- } freeaddrinfo(options.listen_addrs); + #ifdef USE_PAM + log("Using PAM authentication service \"%s\".", SSHD_PAM_SERVICE); + #endif /* USE_PAM */ if (!num_listen_socks) fatal("Cannot bind any address."); *************** *** 975,980 **** --- 994,1000 ---- remote_port = get_remote_por...