DO Ideas 2

Allow users to self-provision using iPXE

I don't even need you to host the images. ;-)

All I need at bare minimum is to tell it what to boot and from where. I'm having big problems with the console (please, vnc is better).

Just let me somehow provide my own multiboot-compliant kernel and I'll do the rest.

  • Blair Sadewitz
  • Sep 11 2018
  • Will not implement
  • Attach files
  • Blair Sadewitz commented
    September 11, 2018 19:53

    I'd happily consent to any amended service agreement whereby I didn't hold you responsible at all for anything that happens beyond the virtual demarcation point. ;-)

    If you want me to have it tickle a watchdog timer or something, I'll do it. But honestly, though, I'd be able to do most of what I want if I simply had the option to boot ipxe without loading a kernel.

  • Moisey Uretsky commented
    September 11, 2018 19:53

    VNC connections aren't left open and are automatically closed in the backend.

    Which is why we recommend that customers use the control panel for console access.

    In regards to allowing users to run anything they like there is a fair amount of work that goes into ensuring that environments are setup correctly, stable, and are working, especially when it comes to monitoring the health of virtual servers which is why we are a bit restrictive at the moment on some of the really bare-bones things.

  • Marcus commented
    September 11, 2018 19:53

    vnc is quite insecure as well..

  • Blair Sadewitz commented
    September 11, 2018 19:53

    You already use iPXE to boot the kernels. Shouldn't it be possible, then, to boot anything that kvm can tolerate? The main reason I can't tell whether it would actually work is because it is so hard to get the console window to refresh in time to send the ^B.

    I very well could be misunderstanding something. Customers could even run their own dnsmasq ;-)

  • Moisey Uretsky commented
    September 11, 2018 19:53

    Currently all kernels are run from the hypervisors and not directly controlled through the virtual machine so this would not be possible.