Comments for linsec.ca blog

Comment on How to create LXC system containers to isolate services by vdanen

vdanen — Wed, 10 Mar 2010 20:13:38 +0000

Hi Pascal. I don’t have the ability to test this to make sure, but you should be able to bind the LXC container to a specific interface. If you look at the linked article, you can see that in the example /etc/lxc-centos.conf there is the “lxc.network.link = br0″, so really what you should be able to do is set the bridge onto the Ethernet interface you want (look at the first LXC article for how to do that with brctl and friends). I believe that should do what you need/want.

Comment on How to create LXC system containers to isolate services by Pascal Dupuis

Pascal Dupuis — Wed, 10 Mar 2010 11:43:06 +0000

Great article. Now I would like to go further. Let’s say that I have a computer with two ethernet cards, branched on a DSL modem. I would like to have normal traffic running through one card, and create a DMZ zone, accessible only inside a lxc container, through the other card. How can I specify that packets originating from the container should be routed through a specific interface ?

Comment on Linux Magazine: Vote for the Linux distro you use the most by Kelly Clowers

Kelly Clowers — Fri, 05 Mar 2010 03:05:52 +0000

Unfortunately for Fedora, I am a Debian user that happens to follow Planet Fedora as well.

Comment on iChat-like remote desktop sharing for Linux by vdanen

vdanen — Sat, 20 Feb 2010 15:20:21 +0000

Michael: I can only assume it’s a bug in Fedora 12… it tells me I need a backend before I can setup an account, and I do have the telepathy-gabble package installed, but when I go to add an account, I get this backend notice (and there’s nothing to pick from). Very odd, but I haven’t looked at it very much yet. I’ll look a bit more today.

Krfb is new to me, but I don’t really use KDE. Thanks, I’m going to look into that as well.

Lots of options apparently. =) I had no idea there were so many. Thanks everyone!

Comment on Kerberos support in OS X 10.6 is a huge step backward by Mr.Blah

Mr.Blah — Sat, 20 Feb 2010 12:02:29 +0000

Hey guys,
was trying to learn more about kerberos with 10.6.2 – super useful info – thanks for posting

Comment on iChat-like remote desktop sharing for Linux by Kevin Kofler

Kevin Kofler — Sat, 20 Feb 2010 10:00:04 +0000

There’s also KDE’s Krfb.

Comment on iChat-like remote desktop sharing for Linux by Ahmed Kamal

Ahmed Kamal — Fri, 19 Feb 2010 00:39:48 +0000

Skype for Linux has screen sharing too eh

Comment on iChat-like remote desktop sharing for Linux by Michael

Michael — Thu, 18 Feb 2010 22:05:16 +0000

Empathy actually uses vino under the hood, e.g. it spawns a copy over dbus. The nice part is having VNC tunneled through telepathy tubes though… so you don’t have to worry about NATs etc!

Btw what “backend” are you talking about? Just make sure you also have the “telepathy-gabble” package installed for XMPP support (iirc the Fedora rpm depends on this “backend”) and yes, all this is XMPP-only.

Comment on iChat-like remote desktop sharing for Linux by hamuju

hamuju — Thu, 18 Feb 2010 21:59:54 +0000

Empathy’s remote function runs over vino afaik. So you have to install vino in order to use this.

Comment on iChat-like remote desktop sharing for Linux by vdanen

vdanen — Thu, 18 Feb 2010 21:57:21 +0000

ooo…. more options. Never heard of vino before. Will have to check that out.

Thanks for the tidbit on x11vnc… I wasn’t aware of that. Thanks! Skype isn’t something I’m overly interested in. I don’t trust skype.