cloudstack-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ian Duffy <...@ianduffy.ie>
Subject Re: Are openvm.eu Templates Safe?
Date Tue, 04 Nov 2014 00:30:16 GMT
Hi Matthew,

I can only speak for the Debian (
http://dl.openvm.eu/cloudstack/debian/vanilla/7/x86_64/ )  and Ubuntu (
http://dl.openvm.eu/cloudstack/ubuntu/vanilla/jenkins/ ) ones. (The others
are save but talk to Nux for validation).

The debian and ubuntu ones are automatically generated through a jenkins
job which executes debootstrap to populate a rootfs. The cloud-init stuff
along with init scripts for password and sshkey injection are placed onto
the box.

The build log for the current debian templates can be viewed at:

http://jenkins.cloudstack.ianduffy.ie/job/build_debian_amd64_template/31/console

The build log for the current ubuntu templates can be viewed at:

http://jenkins.cloudstack.ianduffy.ie/job/build_ubuntu_amd64_template/34/console

I guess I could work on including check sums on those so you can verify
they are what you get from openvm.eu

If you still feel unsure you can easily roll your own jenkins template
building environment.
Using chef and vagrant I have simplified this into a one command step:
"vagrant up". By default vagrant provisions this within virtualbox but you
can easily use many of the vagrant provider plugins to provision to
cloudstack, azure, aws, etc.

https://github.com/imduffy15/cloudstack-templates

It will effectively give you a clone of what you see at
http://jenkins.cloudstack.ianduffy.ie along with this you can see all the
scripts at the above URL that were used to build the templates.

Hope this helps!

Ian.

On 3 November 2014 22:07, Erik Weber <terbolous@gmail.com> wrote:

> On Mon, Nov 3, 2014 at 10:02 PM, Matthew Midgett <
> cloudstck@trick-solutions.com.invalid> wrote:
>
> > I was just pointed to these templates and was wondering if they were safe
> > to
> > deploy?
> >
> >
> >
>
> AFAIK they are built by Ian and Lucian (Nux), so if you trust those two, it
> should be considered safe.
>
> If you want to be 100% sure you can always download the kickstart files and
> build them on your own.
>
> --
> Erik
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message