[pve-devel] [PATCH] qemu-server: add support for unsecure migration (setting in datacenter.cfg)

Stefan Priebe - Profihost AG s.priebe at profihost.ag
Fri Dec 28 08:07:52 CET 2012


Am 28.12.2012 um 07:29 schrieb Dietmar Maurer <dietmar at proxmox.com>:

>> This patch adds support for unsecure migration using a direct tcp connection
>> KVM <=> KVM instead of an extra SSH tunnel. Without ssh the limit is just the
>> bandwith and no longer the CPU / one single core.
> 
> I think this should be done in ssh (chipher=none), so that we still make sure that we connect to
> the correct nodes. But yes, it is considerable amount of work to patch ssh - not sure about that.
It doesn't seem that cipher none gets implemented. So who wants to care about a custom OpenSSH?

At which point do you see the risk connect to wrong nodes?

Stefan


More information about the pve-devel mailing list