<div dir="ltr"><div><div><div><div>Hello All.<br><br></div>Maybe it is time to start providing general anonymous access to resources over rsync protocol. <br><br>Technically we can do the following:<br><br></div>We now have resources files on a separate shared disk, we can create a new vm specially for rsync (and possible move all other protocols there) and then mount it read-only there so we mitigate any security risks and will never be able to change files from that vm. This is how we planned to improve resources initially. <br><br></div>The only thing is that afaik rsync protocol is not authenticated and encrypted. There is nothing secret on resources, but the files might be tampered along the way and I am not sure all rpms there have crypto signatures.<br><br></div>Anton.<br><div><div><div><div><br></div></div></div></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, May 10, 2016 at 3:13 PM, Dotan Paz <span dir="ltr"><<a href="mailto:dpaz@redhat.com" target="_blank">dpaz@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi,<br>
In order to support the RHEV CI's request to sync the repo to tlv, i'd need to have anonymous from tlv over rsync , IP : 82.81.161.50<br>
<br>
Thanks<br>
<span class="HOEnZb"><font color="#888888"><br>
--<br>
<br>
Dotan Paz , Systems Administrator<br>
Labs & Capital Management ,<br>
PnT DevOps<br>
Red Hat inc.<br>
<br>
<br>
<br>
</font></span></blockquote></div><br><br clear="all"><br>-- <br><div class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><span><font color="#888888"><div>Anton Marchukov<br>Senior Software Engineer - <span><span><font color="#888888"><span><span><font color="#888888"><span><span><font color="#888888">RHEV CI - </font></span></span></font></span></span>Red Hat</font></span></span><br><br></div></font></span></div></div></div></div>
</div>