Hi Jörgen, Have been using Michael DeHaan's ansible for a while now, I have changed my outlook towards using HTTPS quite significantly - just like Michael no longer considers the use of SSL in his prior Func project such a great idea anymore.
With SSH so widely deployed, and so available to all popular platforms, and the easiness to do SSH port forwarding, for something which usually is used by supposedly IT savvy sysadmins such as the cobbler Web UI, I believe a reasonable and resource frugal approach is just to o Leave the Web UI running on the localhost of the cobbler server host o On port 80 by default o Over HTTP o Use iptables (and if so desire, SELinux too) to protect the node so that it's hard to crack in. But leave a desired port open such that SSH port forwarding is feasible. Viola, no need to install OpenSSL, no need to mess around Web server configuration files. Just a simple ssh -L local_port:localhost:remote_port username@cobbler_host where local_port is what you wish to use on your local machine, localhost is the localhost of the cobbler server node remote_port is the HTTP port used by the cobbler server node (e.g. 80) and then you can point your browser to your workstation's localhost:local_port/cobbler_web With your $HOME/.ssh/config slightly edited, the above can be transparent. Just a suggestion. Regards, Zack On Thu, Jun 28, 2012 at 6:30 AM, Zack Perry <[email protected]> wrote: [...] RPM build errors: File not found: /root/cobbler/rpm-build/BUILDROOT/cobbler-2.3.1-1.el6.x86_64/usr/share/augeas/lenses/cobblersettings.augmake: *** [rpms] Error 1 This is now fixed in master. If you need to reproduce locally, see this diff: https://github.com/jmaas/cobbler/commit/22363a2f4fb0dc1d2e1175d9badf8078f14e3b2a -- Grtz, Jörgen Maas _______________________________________________ cobbler mailing list [email protected] https://fedorahosted.org/mailman/listinfo/cobbler
