Package: openssh
Severity: wishlist
Hi,
it'd be useful if ssh did name-based virtualhosting, for example if you
provide services on top of ssh where it's irrelevant what physical box the
service resides on: e.g. subversion. If name-based virtualhosting were
supported, it would be possible to move a repository from one physical host
to the other, change DNS, and the clients would transparently begin using
the new server.
This is currently impossible without also changing the host key of the new
host to be the same as the old one (otherwise the clients report that the
host key changed). Changing the host key of the new server may, however,
have adverse side effects if the server isn't really "new", just the new
home of the repository.
What I propose is to have one host key per 'virtualhost', and possibly also
per-virtualhost config settings (e.g. command="svnserve -t" for an entire
virtualhost). Obviously the client would have to tell the server what
virtualhost it wanted to connect to before keys are exchanged.
I realize this is difficult to do and requires major changes to the code and
the protocol. Feel free to add a wontfix tag; I just wanted to publicize
this idea in the hope someone will like it enough to surmount the
difficulties.
Best regards,
Andras
--
Andras Korn <korn at chardonnay.math.bme.hu>
<http://chardonnay.math.bme.hu/~korn/> QOTD:
If debugging is removing bugs, then programming must be putting them in.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
