[tahoe-dev] Use Tahoe as a real-time distributed file system?

Greg Troxel gdt at ir.bbn.com
Thu May 26 08:02:29 PDT 2011


Brian Warner <warner at lothar.com> writes:

> Actually, it's really easy to limit the listening port to the local
> loopback interface (127.0.0.1). The sample configuration in
> docs/frontends/FTP-and-SFTP.rst demonstrates this:
>
>  [sftpd]
>  enabled = true
>  port = tcp:8022:interface=127.0.0.1
>  host_pubkey_file = private/ssh_host_rsa_key.pub
>  host_privkey_file = private/ssh_host_rsa_key
>  accounts.file = private/ftp.accounts

OK, but the default should be loopback only, unless interface=*, or
something.

> I'd certainly stick to using the gateway on your own machine, to reduce
> the SPOFs from two (your local SFTP-client machine, and the gateway
> machine) to just one (your local SFTP-client machine).

Agreed; it never occured to me to do otherwise.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 194 bytes
Desc: not available
URL: <http://tahoe-lafs.org/pipermail/tahoe-dev/attachments/20110526/fea91250/attachment.pgp>


More information about the tahoe-dev mailing list