On Mon, Oct 21, 2019 at 9:13 AM Jakub Jelen <jjelen(a)redhat.com> wrote:
On Mon, 2019-10-21 at 08:36 -0400, Paul Frields wrote:
> Jakub, you can still find it here:
>
https://fedoramagazine.org/?p=29503&preview=1&_ppp=7cd9f47a93
Thank you for the link.
Generally very nice article. But I have just a few comments:
* There is an error in the first command or it does not match
description:
$ ssh -L 8000:localhost:8000
remote.example.com
should say
$ ssh -L 80:localhost:8000
remote.example.com
(note, that you will probably have to run it as a root to be able to
bind port 80 here -- I think using the local 8000 port would be more
appropriate)
This is actually a mistake in the following paragraph, which should have
pointed the browser at port 8000. Also, I found another mistake just now
which is that I referenced https:// in a preceding paragraph implying port
443, and that could be confusing compared to the example. I'll fix the
narrative so it's all consistent.
* The Remote port forwarding can be restricted on the server with
PermitOpen and GatewayPorts (binds only-loopback by default)
configuration options. Mentioning them might save a lot of googling and
trouble for readers who would like to try these things.
Good point -- I'll include that.
* I also miss the emphasis on the security in some places. You
mention
it, but I think in both of the cases (http, mysql), it is good to
mention that they are (mysql usually) plaintext protocols and sending
them (as it is) over internet is almost never a good idea.
A lot of people run mysql as a local-only service, so I didn't want the
article to get too esoteric.
* I miss the -D dynamic port forwarding, which can solve very similar
problems as the local port forwarding, more effectively. But I
understand that it might come as a separate article since it has on
itself more to say.
Indeed -- the point of this article was to keep things simple. But I
definitely like the idea of an article on dynamic port forwarding as a
followup. I'll look into that!
Otherwise it is very nice read with simple explanations I would like
people to read and I will be happy to point to.
This is good to hear Jakub -- thank you for the thorough and helpful
review. Once I make changes above, could I ask you to re-review to make
sure I don't introduce any "regressions"?
Paul
> On Mon, Oct 21, 2019 at 8:24 AM Jakub Jelen
<jjelen(a)redhat.com>
> wrote:
>
> > On Mon, 2019-10-21 at 07:57 -0400, Paul Frields wrote:
> > > We track our accepted articles through a kanban here:
> > >
https://teams.fedoraproject.org/project/asamalik-fedora-magazine/kanban
> > >
> > > This story is here along with a link for the article:
> > >
https://teams.fedoraproject.org/project/asamalik-fedora-magazine/us/81
> > >
> > > Although it does occur to me, have you edited for us previously?
> > > Let
> > > us
> > > know if you have any issues reaching the article.
> >
> > I already have access to the wp-admin interface, since I already
> > wrote
> > one ssh article, but I do not seem to have access to this
> > unpublished
> > article.
> >
> > If that is too complicated to let me in, lets drop it and leave on
> > on
> > the official reviewers. I will not have time to work/review on more
> > articles, but I was interested in this particular one as it is my
> > domain.
> >
> > Regards,
> > Jakub
> >
> > > Paul
> > >
> > > On Mon, Oct 21, 2019 at 2:59 AM Jakub Jelen <jjelen(a)redhat.com>
> > > wrote:
> > >
> > > > On Sun, 2019-10-20 at 19:50 -0400, Paul Frields wrote:
> > > > > I finished my SSH port forwarding article. Would someone like
> > > > > to
> > > > > review it
> > > > > for its Wednesday slot?
> > > >
> > > > I think I can do that, at least from the technical point of
> > > > view.
> > > > Can
> > > > you share a link or some place I can do that? I saw the article
> > > > already
> > > > scheduled, but I did not find a way to open it.
> > > >
> > > > Regards,
> > > > --
> > > > Jakub Jelen
> > > > Senior Software Engineer
> > > > Security Technologies
> > > > Red Hat, Inc.
> > > >
> > > >
> > --
> > Jakub Jelen
> > Senior Software Engineer
> > Security Technologies
> > Red Hat, Inc.
> >
> >
--
Jakub Jelen
Senior Software Engineer
Security Technologies
Red Hat, Inc.