Re: [one-users] Authentication Front-End
Hi María, On Sun, Jul 20, 2014 at 7:51 PM, María Noelia Gil marianoelia@um.es wrote: Hello there! I am studying the authentication mechanism in OpenNebula. The authentication based in username/password against the Front-End unused SSL/TLS tunnel or HMAC. Why the information is not protected? Is it possible to configure a SSL / TLS tunnel? Thank you. That should be covered by the Sunstone authentication docs. [1] Regards [1] http://docs.opennebula.org/4.6/administration/sunstone_gui/suns_auth.html -- Carlos Martín, MSc Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org http://www.opennebula.org/ | cmar...@opennebula.org | @OpenNebula http://twitter.com/opennebula cmar...@opennebula.org ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] MySQL oneadmin password in master and slave
Hi Manuel, 2014-07-18 8:40 GMT+02:00 Manuel Alfonso López Rourich alfonso.lo...@cenits.es: Good morning, When configuring the MySQL backend of a slave in OpenNebula, does the password of the MySQL oneadmin user have to be the same as the password of the MySQL oneadmin user in the MySQL backend of the master? Thank you very much. The slave MySQL will connect to the master using the new user created in step 3 [1] of the docs, so the accounts used by each oned to connect to their local MySQL do not need to match (neither username or password). Regards [1] http://docs.opennebula.org/4.6/advanced_administration/data_center_federation/federationconfig.html#configure-the-mysql-replication-master -- Carlos Martín, MSc Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org http://www.opennebula.org/ | cmar...@opennebula.org | @OpenNebula http://twitter.com/opennebula ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] CloudCatalyst Survey about Cloud Computing Trends
Dear community, This is a gently reminder of the survey deadline. You can help us influence the future of cloud entrepreneurship in the European Union following this link: https://www.surveymonkey.com/s/3GHCM9K Thank you for your participation, your help is greatly appreciated. -- Carlos Martín, MSc Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | cmar...@opennebula.org | @OpenNebula http://twitter.com/opennebula cmar...@opennebula.org On Wed, Jul 16, 2014 at 11:43 AM, Carlos Martín Sánchez cmar...@opennebula.org wrote: Dear OpenNebula community, The EU CloudCatalyst http://cloudcatalyst.eu/ initiative invites you to participate in a survey about cloud computing trends. You can influence over the CloudCatalyst project by collaborating on the identification of existing challenges for Cloud expansion as well as on the definition of new market opportunities. The survey will produce detailed information about the main barriers to cloud adoption in order to help entrepreneurs, researchers, and software developers create value-added Cloud solutions and services. To take the survey, click the link: *https://www.surveymonkey.com/s/3GHCM9K https://www.surveymonkey.com/s/3GHCM9K* The deadline for filling in the survey is *22 July 2014*. The results of the survey will be shared (for free) with all the respondents. Cloud Catalyst is an initiative funded by the European Commission that aims to provide useful tools to foster the adoption of Cloud Computing in Europe. CloudCatalyst will set up a cross-border advice and support service targeting two main groups: 1. Software developers, researchers, start-ups, and other Cloud entrepreneurs interested in accelerating the development and deployment of Cloud Computing and internet services 2. End-users from large industries, SMEs, and public entities interested in knowing how to benefit from the implementation of Cloud solutions. On behalf of the CloudCatalyst Team, *Thank you in advance for your participation!* http://CloudCatalyst.eu http://cloudcatalyst.eu/ -- Carlos Martín, MSc Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | cmar...@opennebula.org | @OpenNebula http://twitter.com/opennebula cmar...@opennebula.org ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] Authentication Front-End
Thanks, but I meant the SSL / TLS protection of messages sent from Sunstone to the Front-End (User useradmin). Right here you can establish an SSL / TLS tunnel? El 21/07/2014, a las 11:00, Carlos Martín Sánchez cmar...@opennebula.org escribió: Hi María, On Sun, Jul 20, 2014 at 7:51 PM, María Noelia Gil marianoelia@um.es wrote: Hello there! I am studying the authentication mechanism in OpenNebula. The authentication based in username/password against the Front-End unused SSL/TLS tunnel or HMAC. Why the information is not protected? Is it possible to configure a SSL / TLS tunnel? Thank you. That should be covered by the Sunstone authentication docs. [1] Regards [1] http://docs.opennebula.org/4.6/administration/sunstone_gui/suns_auth.html -- Carlos Martín, MSc Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | cmar...@opennebula.org | @OpenNebula ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
[one-users] OpenNebula 4.8 Beta 1 ready for testing
Hello, The OpenNebula team is really happy to release the first beta for version 4.8 (4.7.80). In this version, alongside several fixes, we have been working on some new features: * Improvements to the Cloud View interface like OneFlow integration * New VDC admin view that matches the Cloud View. * New virtual network model that make its configuration and management more flexible with address ranges. * IP reservation. * Network interface default configuration * Quotas can now specify a value of 0 to disable certain objects for users or groups. * Logs now have the zone ID so its easier to parse in a centralized syslog configuration. * New datastore to use local block devices. * Inter datastore image clone. * Support for RBD format 2 in CEPH drivers * IO throttling for disk devices. * New hybrid drivers for Microsoft Azure and IBM Softlayer services. * OneGate can now be used to get information about all the VMs in a service. * OneFlow can wait until a VM phones home before starting the rest of VMs. * Network configuration in a flow can be specified per role. * User input on template instantiation for certain VM parameters. * Default view for a group in Sunstone. * Instantiate VMs on hold. * Boot order can be selected from Sunstone. You can find more information about the new features in the release notes [1]. In this new release we also start supporting RHEL/CentOS 7. We encourage everyone that is using or planning to use this distributions to try the new packages and fill any bugs found in them. We have also created new repositories for this release so its easier to install and your 4.6 installations don't upgrade automatically to it. You can download the packages from the software page [2] or use the new repositories [3]. Now is the time to try it and fill bugs so we can fix them before the final release. This new release code name is Lemon Slice [4]. From Wikipedia: The Lemon slice nebula, also known as IC 3568, is a planetary nebula that is 1.3 kiloparsecs (4500 ly) away from Earth in the constellation of Camelopardalis (just 7.5 degrees from Polaris). It is a relatively young nebula and has a core diameter of only about 0.4 light years. The Lemon slice nebula is one of the most simple nebulae known, with an almost perfectly spherical morphology. It appears very similar to a lemon, for which it is named. The core of the nebula does not have a distinctly visible structure in formation and is mostly composed of ionized helium. The central star is a very hot and bright asymptotic red giant, and can be seen as a red-orange hue in an amateur's telescope. A faint halo of interstellar dust surrounds the nebula. Thank you all for the input, patches and bug reports that made this release possible. Happy testing! [1] http://docs.opennebula.org/4.8/release_notes/release_notes/whats_new.html [2] http://opennebula.org/software/ [3] http://docs.opennebula.org/4.8/design_and_installation/building_your_cloud/ignc.html [4] http://en.wikipedia.org/wiki/Lemon_slice_nebula -- Javier Fontán Muiños Developer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | @OpenNebula | github.com/jfontan ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
[one-users] Template versioning
Hi guys, does OpenNebula offer some sort of template versioning? I've encoutered problems few times that some of my templates got modified without knowing about it - I'm not sure whether it was done by another admin or whether it was a bug in susnstone. Thus it would be nice to have some history on template changes. Ondra This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you for understanding. ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] Failing ONE 4.7.80-1 on Debian
Can you try enabling the core and executing the daemon manually? (as oneadmin user) $ ulimit -c 15000 $ oned -f It should generate a core file that we can try to analyze. On Sun, Jul 20, 2014 at 12:54 AM, Daniel Dehennin daniel.dehen...@baby-gnu.org wrote: Daniel Dehennin daniel.dehen...@baby-gnu.org writes: Ok, I tried on testing, I'll give a try on Wheezy. Hello, After your answer on IRC, I tried to strace the oned process to see what could be wrong, I modifies the /usr/bin/one on line 187 with: strace -f -o /tmp/oned.strace.log $ONED -f 21 Here is the output: 3933 open(/var/lib/one, O_RDONLY|O_CLOEXEC) = 5 3933 fsync(5) = 0 3933 close(5) = 0 3933 lseek(4, 0, SEEK_SET) = 0 3933 write(4, \331\325\5\371 \241c\327\0\0\0\3, 12) = 12 3933 fsync(4) = 0 3933 lseek(3, 0, SEEK_SET) = 0 3933 write(3, SQLite format 3\0\4\0\1\1\0@ \0\0\0\37\0\0\0+..., 1024) = 1024 3933 lseek(3, 39936, SEEK_SET) = 39936 3933 write(3, \r\0\0\0\1\3k\0\3k\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0..., 1024) = 1024 3933 lseek(3, 40960, SEEK_SET) = 40960 3933 write(3, \n\0\0\0\1\3\362\0\3\362\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0..., 1024) = 1024 3933 fsync(3) = 0 3933 close(4) = 0 3933 unlink(/var/lib/one/one.db-journal) = 0 3933 fcntl(3, F_SETLK, {type=F_RDLCK, whence=SEEK_SET, start=1073741826, len=510}) = 0 3933 fcntl(3, F_SETLK, {type=F_UNLCK, whence=SEEK_SET, start=1073741824, len=2}) = 0 3933 fcntl(3, F_SETLK, {type=F_UNLCK, whence=SEEK_SET, start=0, len=0}) = 0 3933 --- SIGSEGV (Segmentation fault) @ 0 (0) --- 3933 +++ killed by SIGSEGV +++ I don't know if this help, it's on Debian wheezy AMD64, uname -a: Linux test-nebula 3.14-1-amd64 #1 SMP Debian 3.14.12-1 (2014-07-11) x86_64 GNU/Linux Regards. -- Daniel Dehennin Récupérer ma clef GPG: gpg --recv-keys 0xCC1E9E5B7A6FE2DF Fingerprint: 3E69 014E 5C23 50E8 9ED6 2AAD CC1E 9E5B 7A6F E2DF ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org -- Javier Fontán Muiños Developer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | @OpenNebula | github.com/jfontan ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] Authentication Front-End
But the 9869 is Sunsone port or Oned port? Oned using 2633, right? Could I configure a proxy for port 2633? El 21/07/2014, a las 15:00, Javier Fontan jfon...@opennebula.org escribió: You can also use a proxy for oned, port 9869. Then you have to tell the clients to use the proxy address. For CLI you set the environment variable ONE_XMLRPC: export ONE_XMLRPC=https://server:port/RPC2 For Sunstone it can be changed in /etc/one/sunstone-server.conf: :one_xmlrpc: https://server:port/RPC2 On Mon, Jul 21, 2014 at 11:34 AM, María Noelia Gil marianoelia@um.es wrote: Thanks, but I meant the SSL / TLS protection of messages sent from Sunstone to the Front-End (User useradmin). Right here you can establish an SSL / TLS tunnel? El 21/07/2014, a las 11:00, Carlos Martín Sánchez cmar...@opennebula.org escribió: Hi María, On Sun, Jul 20, 2014 at 7:51 PM, María Noelia Gil marianoelia@um.es wrote: Hello there! I am studying the authentication mechanism in OpenNebula. The authentication based in username/password against the Front-End unused SSL/TLS tunnel or HMAC. Why the information is not protected? Is it possible to configure a SSL / TLS tunnel? Thank you. That should be covered by the Sunstone authentication docs. [1] Regards [1] http://docs.opennebula.org/4.6/administration/sunstone_gui/suns_auth.html -- Carlos Martín, MSc Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | cmar...@opennebula.org | @OpenNebula ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org -- Javier Fontán Muiños Developer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | @OpenNebula | github.com/jfontan ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] Authentication Front-End
You are totally right. I messed it up. The port to proxy is 2633 from oned. On Mon, Jul 21, 2014 at 3:07 PM, María Noelia Gil marianoelia@um.es wrote: But the 9869 is Sunsone port or Oned port? Oned using 2633, right? Could I configure a proxy for port 2633? El 21/07/2014, a las 15:00, Javier Fontan jfon...@opennebula.org escribió: You can also use a proxy for oned, port 9869. Then you have to tell the clients to use the proxy address. For CLI you set the environment variable ONE_XMLRPC: export ONE_XMLRPC=https://server:port/RPC2 For Sunstone it can be changed in /etc/one/sunstone-server.conf: :one_xmlrpc: https://server:port/RPC2 On Mon, Jul 21, 2014 at 11:34 AM, María Noelia Gil marianoelia@um.es wrote: Thanks, but I meant the SSL / TLS protection of messages sent from Sunstone to the Front-End (User useradmin). Right here you can establish an SSL / TLS tunnel? El 21/07/2014, a las 11:00, Carlos Martín Sánchez cmar...@opennebula.org escribió: Hi María, On Sun, Jul 20, 2014 at 7:51 PM, María Noelia Gil marianoelia@um.es wrote: Hello there! I am studying the authentication mechanism in OpenNebula. The authentication based in username/password against the Front-End unused SSL/TLS tunnel or HMAC. Why the information is not protected? Is it possible to configure a SSL / TLS tunnel? Thank you. That should be covered by the Sunstone authentication docs. [1] Regards [1] http://docs.opennebula.org/4.6/administration/sunstone_gui/suns_auth.html -- Carlos Martín, MSc Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | cmar...@opennebula.org | @OpenNebula ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org -- Javier Fontán Muiños Developer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | @OpenNebula | github.com/jfontan -- Javier Fontán Muiños Developer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | @OpenNebula | github.com/jfontan ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
[one-users] Setting hostname for vm
Hi folks, I'm trying to determine how I can set the hostname for the vms I spin up. It looks like the web interface for vms has no place to enter additional one-off type properties, like hostname. This is true for both the user web interface and the admin web interface. The template creation interface certainly has a place for raw data, but I'm assuming I shouldn't have to create one template per vm just to set the hostname. Perhaps setting up a template correctly will change the vm interface, allowing a place to type in a hostname. Host and guest are both CentOS 6. Thanks! Kerry ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org