vagrant [Was: Re: packages status]

To: debian-user@lists.debian.org
Subject: vagrant [Was: Re: packages status]
From: "Felix C. Stegerman" <flx@obfusk.org>
Date: Wed, 08 Jan 2014 17:12:45 +0100
Message-id: <[🔎] 52CD78FD.6020506@obfusk.org>
In-reply-to: <[🔎] 52CCC985.5040205@yahoo.fr>
References: <52C2B17F.7030705@yahoo.fr> <[🔎] 20140102034047.GD24746@hysteria.proulx.com> <[🔎] 52C52775.9040801@yahoo.fr> <[🔎] 20140102170945.GA12485@hysteria.proulx.com> <[🔎] 52CB7DAE.2050401@yahoo.fr> <[🔎] 52CCA934.9020308@obfusk.org> <[🔎] 52CCC985.5040205@yahoo.fr>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On 2014-01-08 04:44, Diogene Laerce wrote:
> Hi,
> 
>>> [...] I would like to automate the installation process from 
>>> scratch to a django development platform. But forgot to note
>>> every modification from the very beginning. ^^ :)
>> I'm not sure what you mean by "development platform", but for 
>> standardized/customized development/testing environments,
>> vagrant (http://www.vagrantup.com/) is quite useful.  It makes it
>> very easy to create, use, and share custom virtual machines.
> 
> Actually I didn't know vagrant but I was going to use ansible to
> do about the same job. The vagrant documentation provides an
> explanation on how to use them as a synergy so : thank you ! ;)

You're welcome.

>> The only downside is that it is not configured very securely by
>> default.

To expand on the insecure configuration: by default, vagrant:
* listens to *:2222 allowing anyone on the local network to access
your VM (unless firewalled).
* uses a known ssh key pair and user password.
* shares the folder containing the Vagrantfile with the VM, allowing
someone who manages to access/compromise the VM access to the
Vagrantfile, which allows him to inject ruby code that you will run
when using vagrant the next time.

All of these can be fixed.  I've written some instructions a while
back on how to create a secure (ubuntu) base box yourself:
https://gist.github.com/obfusk/5768197

> 
> The less scripting I need to do the better, anyway. :)
> 
> Lots of reading to come..
> 

Have fun.

- - Felix

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)
Comment: Using GnuPG with Icedove - http://www.enigmail.net/

iQIcBAEBCgAGBQJSzXjyAAoJELIY/ywn/GzG4FQQANqzvwLAfAKkKi+L2vJL0A0P
nwswShMIUj1GQ8jboAG2niWfB+84zBv6FU3L6oRBafCf0fiTfIobtc50SwvOHwXZ
ZIErJm8FfM6EOcFDE7cBpufWU4lQ7IEKeq19zF5nqdul7etSr6YH+rNwa6E/qFQT
K/K/j5wJ0enQ67cBGxQ+nuk9I44i89xvK6H+4TpNwzMS7EVFu5sgcLdXdg1Va4YH
81TMeqKdbE9QVryIQFo468yt1JLGzfBJ4eiSHsyuEDXbeWUE3Dlgrpms+JPZ+Og1
LZqx8dRmptipSccmnVwWt6DWqoyGX+kFMSBsSaAKftM4PXUHt7l7lVjfRKo9P2yx
wLwKT5h4M1O2CrydjJoxuPYU64M+29I0iL8Y1GZ1zIcsgW9/Z0y9dvX7DwKKlfCL
fcfVLws63zxvZ5wcaBtqOheBP0aY56ObBLQ7P91xzePS+oPPDtmM+UHAqgb+RfMl
7tZtWkIvsmJMWlRqq7jdH10FB8Oyf06dkyFI9nxzoJ7/to+krVV+rNXLt2Q510JC
1cpu8nk3Q7KgsV2YFcE9ml0YG36oegCGp02oEYc63ZlRDkMsxMIRilTxgkBK/xYb
l4XVg0Ck7z1yvuxJFKE9YbApx9lSv809TyytBoWo3urbJBMuUINxXiKkmks2CRBt
9RKtboC3iTs3usze/6X1
=MtMn
-----END PGP SIGNATURE-----

Reply to:

References:
- Re: packages status
  - From: Bob Proulx <bob@proulx.com>
- Re: packages status
  - From: Diogene Laerce <me_buss777@yahoo.fr>
- Re: packages status
  - From: Bob Proulx <bob@proulx.com>
- Re: packages status
  - From: Diogene Laerce <me_buss777@yahoo.fr>
- Re: packages status
  - From: "Felix C. Stegerman" <flx@obfusk.org>
- Re: packages status
  - From: Diogene Laerce <me_buss777@yahoo.fr>

Prev by Date: Re: Iceweasel weird behavior
Next by Date: Re: GPT + RAID + boot
Previous by thread: Re: packages status
Next by thread: Re: how to configure pulseaudio to use analog speaker on motherboard not hdmi on video card
Index(es):
- Date
- Thread