[Crowbar] Recommend caution with the crowbar.iso

Discussion:

Darrel O'Pry

2011-10-18 14:21:27 UTC

I just noticed the crowbar isos on zehicle.com will boot and install crowbar
with no user interaction.

I would not recommend leaving the disk in your laptop after burning....

Fortunately the laptop I left it in was my dev crowbar server.

Cheers.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.us.dell.com/pipermail/crowbar/attachments/20111018/2b62bf2c/attachment.html

Rob_Hirschfeld

2011-10-18 14:25:40 UTC

Permalink

That is VERY VERY GOOD ADVICE! I'll start including that as an advisory!

I'd be interested in suggestions on an approach that does not reduce automatic behavior but protects non-intended targets.

PS: In the pre-allocate phase days, you'd have a similar experience if you booted into a Crowbar system w/ your laptop because Crowbar grabbed the PXE and started installing.

From: crowbar-bounces On Behalf Of Darrel O'Pry
Sent: Tuesday, October 18, 2011 9:21 AM
To: crowbar
Subject: [Crowbar] Recommend caution with the crowbar.iso

I just noticed the crowbar isos on zehicle.com<http://zehicle.com> will boot and install crowbar with no user interaction.

I would not recommend leaving the disk in your laptop after burning....

Fortunately the laptop I left it in was my dev crowbar server.

Cheers.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.us.dell.com/pipermail/crowbar/attachments/20111018/920f4590/attachment-0001.html

Darrel O'Pry

2011-10-18 16:44:48 UTC

Permalink

For CD-ROM crowbar installation I think a simple boot prompt is fine.
Realistically do you plan on deploying a cluster of crowbar servers
automatically? Even if you're starting with a single crowbar server and
using crowbar to install crowbar, you'll still have to specify that you want
the server allocated, it's not a completely hands off process.

Post by Rob_Hirschfeld
That is VERY VERY GOOD ADVICE! I'll start including that as an advisory!
I'd be interested in suggestions on an approach that does not reduce
automatic behavior but protects non-intended targets.
PS: In the pre-allocate phase days, you'd have a similar experience if you
booted into a Crowbar system w/ your laptop because Crowbar grabbed the PXE
and started installing.
From: crowbar-bounces On Behalf Of Darrel O'Pry
Sent: Tuesday, October 18, 2011 9:21 AM
To: crowbar
Subject: [Crowbar] Recommend caution with the crowbar.iso
I just noticed the crowbar isos on zehicle.com<http://zehicle.com> will
boot and install crowbar with no user interaction.
I would not recommend leaving the disk in your laptop after burning....
Fortunately the laptop I left it in was my dev crowbar server.
Cheers.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.us.dell.com/pipermail/crowbar/attachments/20111018/e9254d47/attachment.html

Gregory_Althaus

2011-10-18 16:55:52 UTC

Permalink

Right now, we are cheesy and use this property and the ability to add boot parms to the iso to auto-install in our CI environment. So, yes, in this case, it is completely hands free deploy of the admin node. Of course, since we modify the iso, we can blow away the prompting part just as easily.

With regards to allocation, the deployer can be put into an auto-allocate mode as well. We don't default that to on. :) Or really recommend it.

With all the above said, we should think about this to not be so dangerous.

Thanks,
Greg

From: crowbar-bounces On Behalf Of Darrel O'Pry
Sent: Tuesday, October 18, 2011 11:45 AM
Cc: crowbar
Subject: Re: [Crowbar] Recommend caution with the crowbar.iso

For CD-ROM crowbar installation I think a simple boot prompt is fine. Realistically do you plan on deploying a cluster of crowbar servers automatically? Even if you're starting with a single crowbar server and using crowbar to install crowbar, you'll still have to specify that you want the server allocated, it's not a completely hands off process.

On Tue, Oct 18, 2011 at 10:25 AM, <Rob_Hirschfeld at dell.com<mailto:Rob_Hirschfeld at dell.com>> wrote:
That is VERY VERY GOOD ADVICE! I'll start including that as an advisory!

I'd be interested in suggestions on an approach that does not reduce automatic behavior but protects non-intended targets.

PS: In the pre-allocate phase days, you'd have a similar experience if you booted into a Crowbar system w/ your laptop because Crowbar grabbed the PXE and started installing.

From: crowbar-bounces On Behalf Of Darrel O'Pry
Sent: Tuesday, October 18, 2011 9:21 AM
To: crowbar
Subject: [Crowbar] Recommend caution with the crowbar.iso

I just noticed the crowbar isos on zehicle.com<http://zehicle.com><http://zehicle.com> will boot and install crowbar with no user interaction.

I would not recommend leaving the disk in your laptop after burning....

Fortunately the laptop I left it in was my dev crowbar server.

Cheers.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.us.dell.com/pipermail/crowbar/attachments/20111018/b1c61b77/attachment.html