Re: [qubes-users] Using UNISON between VMs... Is that possible?
El martes, 12 de septiembre de 2017, 18:43:12 (UTC+2), Sven Semmler escribió: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > On 09/12/2017 02:15 AM, segu.sa...@gmail.com wrote: > > I have a script that uses UNISON [...] The idea is to sync files > > between two virtual machines that have no visibility between them. > > Can you be more specific? Will those two VMs have network connections? > Are you planning to continue using UNISON? Must the script run fully > automatically or is some limited user interaction ok? (scheduled or > manual run) > > > Has anyone faced this problem or imagined a solution for this? > > * you can use qvm-copy-to-vm to copy file(s) from one VM to another, > whoever it won't give you synchronization ... if the sender had > visibility of the file system of the receiver, it would defeat the > entire purpose of Qubes OS (compartmentalization). > > * you can mount a USB block device to VM 1 and run your script to sync > between VM 1 and a folder structure on the USB block device, then you > could unmount and mount the same to VM 2 and now run your script again > to sync with VM 2 > > * you could allow network for both VMs via sys-firewall and setup > firewall rules that would ensure that the only connection between the to > VMs is the one for UNISON (e.g. unison -socket 1234). You can lookup the > internal IP addresses of the VMs in the Qubes Manager. > > Finally, I would recommend to take a step back and question your setup. > How much thought have you put into your domain compartmentalization? Is > it really necessary to sync between the two VMs? What is the purpose of > having the same files in two VMs that are isolated from each other? > > /Sven > -BEGIN PGP SIGNATURE- > Version: GnuPG v2 > > iQIcBAEBCAAGBQJZuA6YAAoJENpuFnuPVB+2VkwP/0mWxWFlBKQtsfUp25rw7a9y > eiNsgIzzmWUgMAkFY6yFryVFUtmwCMOW48w9unx9FIUpOpboHSDrGW84N2yaqjyV > KzwFPhhaJbV/i7/1CyHzHzkhctgpipHfz5c0G4PFdpchSbgepaOfEjTQv5sv0p5X > swFxx3f7OA162rZRZqjSJ3KKvrkHzVLJuU2moRJvwg/+LMAtjtlsRGmG1wBsyBDy > LF94GMlKD+mMbGB5TQmAU2Svxq3ym0yKzjvwzzFbNc3RSASJROlFOvEtqSVwWioH > t6RicdD2DW0WnohVrbYLrj55oIhwDvRFfvBVqYr+Bbw9uD+lh16GHX6eALEm0yww > wZP4Xtk2id+giDkj9agSv+aLCoAQpxp0lg2Vrtj9LT/3rJWMRP2GPIirqVFLXONX > HmEC0iozlvG/OltQnuD+VQvX2yYdT84FgxKqGEtNhnRNs45RwDhkVqIXwifzSbIu > KRYRap6W9FNbpcEBoq4jBmotnOkECOdqi7qSCvzjlrBQNAHrSXZyY2SZaD731hir > UApJnm4Bo8yJE7O12P6IvA0335ins0eNk6IuWVTlYuN+ymIqwfitYqOd7HWE/Zzu > WXBwT3QzI9Br2R3D0dJR6+LoEQLmt/OXAhqG5wsFhKF6kd/SGTFpWseCoypjsZKB > bk3DM/YPjTAvWOLtkfOp > =L7c+ > -END PGP SIGNATURE- I have, finally, managed to run the scripts by using SSH and the firewalls of the machines. Thank you so much. SSH is what I needed. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/c5ef7b3c-9a64-42f4-a19f-a7bd0d4abfa7%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] Using UNISON between VMs... Is that possible?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 09/12/2017 02:15 AM, segu.sa...@gmail.com wrote: > I have a script that uses UNISON [...] The idea is to sync files > between two virtual machines that have no visibility between them. Can you be more specific? Will those two VMs have network connections? Are you planning to continue using UNISON? Must the script run fully automatically or is some limited user interaction ok? (scheduled or manual run) > Has anyone faced this problem or imagined a solution for this? * you can use qvm-copy-to-vm to copy file(s) from one VM to another, whoever it won't give you synchronization ... if the sender had visibility of the file system of the receiver, it would defeat the entire purpose of Qubes OS (compartmentalization). * you can mount a USB block device to VM 1 and run your script to sync between VM 1 and a folder structure on the USB block device, then you could unmount and mount the same to VM 2 and now run your script again to sync with VM 2 * you could allow network for both VMs via sys-firewall and setup firewall rules that would ensure that the only connection between the to VMs is the one for UNISON (e.g. unison -socket 1234). You can lookup the internal IP addresses of the VMs in the Qubes Manager. Finally, I would recommend to take a step back and question your setup. How much thought have you put into your domain compartmentalization? Is it really necessary to sync between the two VMs? What is the purpose of having the same files in two VMs that are isolated from each other? /Sven -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQIcBAEBCAAGBQJZuA6YAAoJENpuFnuPVB+2VkwP/0mWxWFlBKQtsfUp25rw7a9y eiNsgIzzmWUgMAkFY6yFryVFUtmwCMOW48w9unx9FIUpOpboHSDrGW84N2yaqjyV KzwFPhhaJbV/i7/1CyHzHzkhctgpipHfz5c0G4PFdpchSbgepaOfEjTQv5sv0p5X swFxx3f7OA162rZRZqjSJ3KKvrkHzVLJuU2moRJvwg/+LMAtjtlsRGmG1wBsyBDy LF94GMlKD+mMbGB5TQmAU2Svxq3ym0yKzjvwzzFbNc3RSASJROlFOvEtqSVwWioH t6RicdD2DW0WnohVrbYLrj55oIhwDvRFfvBVqYr+Bbw9uD+lh16GHX6eALEm0yww wZP4Xtk2id+giDkj9agSv+aLCoAQpxp0lg2Vrtj9LT/3rJWMRP2GPIirqVFLXONX HmEC0iozlvG/OltQnuD+VQvX2yYdT84FgxKqGEtNhnRNs45RwDhkVqIXwifzSbIu KRYRap6W9FNbpcEBoq4jBmotnOkECOdqi7qSCvzjlrBQNAHrSXZyY2SZaD731hir UApJnm4Bo8yJE7O12P6IvA0335ins0eNk6IuWVTlYuN+ymIqwfitYqOd7HWE/Zzu WXBwT3QzI9Br2R3D0dJR6+LoEQLmt/OXAhqG5wsFhKF6kd/SGTFpWseCoypjsZKB bk3DM/YPjTAvWOLtkfOp =L7c+ -END PGP SIGNATURE- -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/edab4168-df00-5037-7741-7f9879303e2b%40SvenSemmler.org. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Using UNISON between VMs... Is that possible?
Hi! I have a script that uses UNISON software on Linux to sync files between folders in a secure way running clamav antivirus every time there's a file change that needs to be synced. Obviously, this script works like a charm on standard Linux OS's, but I can't come up with a solution on Qubes. The idea is to sync files between two virtual machines that have no visibility between them. I've searched the Qubes OS docs and the most similar things I have seen are these two commands: 1) https://www.qubes-os.org/doc/copying-files/ 2) https://www.qubes-os.org/doc/copy-from-dom0/ I can't manage to integrate those commands into my script. Has anyone faced this problem or imagined a solution for this? Thanks! -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/005f5c9a-b4ab-459d-b07f-7653fd21e975%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
