Return-Path: X-Original-To: apmail-incubator-cloudstack-dev-archive@minotaur.apache.org Delivered-To: apmail-incubator-cloudstack-dev-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 2AEF4D5A2 for ; Tue, 17 Jul 2012 14:12:02 +0000 (UTC) Received: (qmail 60671 invoked by uid 500); 17 Jul 2012 14:12:02 -0000 Delivered-To: apmail-incubator-cloudstack-dev-archive@incubator.apache.org Received: (qmail 60495 invoked by uid 500); 17 Jul 2012 14:12:01 -0000 Mailing-List: contact cloudstack-dev-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: cloudstack-dev@incubator.apache.org Delivered-To: mailing list cloudstack-dev@incubator.apache.org Received: (qmail 60466 invoked by uid 99); 17 Jul 2012 14:12:00 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 17 Jul 2012 14:12:00 +0000 X-ASF-Spam-Status: No, hits=2.9 required=5.0 tests=HTML_MESSAGE,SPF_NEUTRAL X-Spam-Check-By: apache.org Received-SPF: neutral (nike.apache.org: local policy) Received: from [65.124.104.105] (HELO smtp2.tls.net) (65.124.104.105) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 17 Jul 2012 14:11:52 +0000 Received: from adsl-99-50-228-69.dsl.bltnin.sbcglobal.net ([99.50.228.69] helo=twister.dyndns.org) by smtp2.tls.net with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.76) (envelope-from ) id 1Sr8Ur-0002Oy-E4 for cloudstack-dev@incubator.apache.org; Tue, 17 Jul 2012 10:11:30 -0400 Received: from tls-office.tls.net ([65.124.104.200] helo=[192.168.32.64]) by twister.dyndns.org with esmtpsa (TLSv1:CAMELLIA256-SHA:256) (Exim 4.76) (envelope-from ) id 1Sr8Uf-0004tH-Oc for cloudstack-dev@incubator.apache.org; Tue, 17 Jul 2012 10:11:27 -0400 Message-ID: <50057280.60907@twister.dyndns.org> Date: Tue, 17 Jul 2012 10:11:12 -0400 From: Fred Wittekind User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:13.0) Gecko/20120614 Thunderbird/13.0.1 MIME-Version: 1.0 To: cloudstack-dev@incubator.apache.org Subject: Re: [DISCUSS] Source code from realhostip.com service References: In-Reply-To: Content-Type: multipart/alternative; boundary="------------080802000505070307040602" X-Spam-Score: -2.9 (--) X-Spam-Report: Spam detection software, running on the system "twister.dragon", has identified this incoming email as possible spam. The original message has been attached to this so you can view it (if it isn't spam) or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: On 7/14/2012 11:57 AM, David Nalley wrote: > On Sat, Jul 14, 2012 at 11:49 AM, Outback Dingo wrote: >> On Sat, Jul 14, 2012 at 11:27 AM, David Nalley wrote: >>> Just a quick follow up - I've posted the code so it can be viewed on >>> my personal github account. Making such a proposal without being able >>> to see the code isn't terribly helpful, I apologize that it took me so >>> long to do so. >>> >>> https://github.com/ke4qqq/RHIP >>> >>> --David >> Would be nice if there was a simple howto for setting up our own >> "realhostip" like services >> so we dont have to rely on external services for CS to work > That is one of the goals of pushing this code out. (and I imagine > documentation will follow) You could of course set one up using BIND > as Matt pointed out, but this is the actual software that is providing > the service on realhostip.com - and I imagine that at some point we'll > need to configure CS to perhaps use an ASF-hosted service that the > project administers. > > --David > [...] Content analysis details: (-2.9 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -1.0 ALL_TRUSTED Passed through trusted hosts only via SMTP -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% [score: 0.0000] 0.0 HTML_MESSAGE BODY: HTML included in message X-TLSNET-SMTP-Spam-Score: -1.0 (-) X-TLSNET-SMTP-Spam-Report: Content analysis details: (-1.0 points, 10.0 required) pts rule name description ---- ---------------------- ----------------------------------------- -1.0 ALL_TRUSTED Passed through trusted hosts only via SMTP 0.0 HTML_MESSAGE BODY: HTML included in message --------------080802000505070307040602 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit On 7/14/2012 11:57 AM, David Nalley wrote: > On Sat, Jul 14, 2012 at 11:49 AM, Outback Dingo wrote: >> On Sat, Jul 14, 2012 at 11:27 AM, David Nalley wrote: >>> Just a quick follow up - I've posted the code so it can be viewed on >>> my personal github account. Making such a proposal without being able >>> to see the code isn't terribly helpful, I apologize that it took me so >>> long to do so. >>> >>> https://github.com/ke4qqq/RHIP >>> >>> --David >> Would be nice if there was a simple howto for setting up our own >> "realhostip" like services >> so we dont have to rely on external services for CS to work > That is one of the goals of pushing this code out. (and I imagine > documentation will follow) You could of course set one up using BIND > as Matt pointed out, but this is the actual software that is providing > the service on realhostip.com - and I imagine that at some point we'll > need to configure CS to perhaps use an ASF-hosted service that the > project administers. > > --David > My personal vote would be to require users to provide there own certificate, or disable https. IMHO realhostip is really just an illusion of security, since it's pretty trivial to plug the private key into wireshark and decrypt the traffic for anyone using realhostip. Fred --------------080802000505070307040602--