Lennart Poettering on Nostr: … the generator will bind an AF_UNIX socket into it also providing ssh. The idea is ...
… the generator will bind an AF_UNIX socket into it also providing ssh. The idea is that that dir is mounted both into the container and into the host, so that the AF_UNIX is accessible from both. The other side of the equation is that a tiny plugin for the ssh client which allows connecting to AF_VSOCK/AF_UNIX sockets. In effect: without any further manual configuration full OS containers and VMs are now accessible from the host without any networking. Just run "ssh vsock/4711" or …
Published at
2024-01-09 10:12:19Event JSON
{
"id": "f5bee6bd53afd4ce509fc0c0efa5d6b6ed19b7e0365469f73e508b102c1e8fca",
"pubkey": "1d95c32d9a9d95a54f98eb2eaa156f3d3a71dc49eca2c960b2b89962758f1cc0",
"created_at": 1704795139,
"kind": 1,
"tags": [
[
"e",
"693c79d23c2b6d61f75c5daa2f72ffad76ec0a116b12a216a7998bc172eda30b",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://mastodon.social/users/pid_eins/statuses/111725454272939837",
"activitypub"
]
],
"content": "… the generator will bind an AF_UNIX socket into it also providing ssh. The idea is that that dir is mounted both into the container and into the host, so that the AF_UNIX is accessible from both. The other side of the equation is that a tiny plugin for the ssh client which allows connecting to AF_VSOCK/AF_UNIX sockets. In effect: without any further manual configuration full OS containers and VMs are now accessible from the host without any networking. Just run \"ssh vsock/4711\" or …",
"sig": "c14b3771d0360e6b26cd9cec452a6d00478a98a91a8e8ec2d577b94256328fa71c6a83d4ede8d879f96ee925e28ee75712f0dbcf8ce8eb7c1d82fb70035f63c7"
}
