slim's questions

For, um, historic reasons, we have a C program for HPUX which accepts telnet connections, and runs a home-grown REPL that restricts the commands available.

Rather than port this code to Linux, I'd like to get effectively the same functionality using standard tools.

Simple, you say - just make a user with bash --restricted as its default shell.

However we want the restricted shell to have an effective userid of "user1", and for it to be accessible without a password. Meanwhile we'd like "user1" to behave normally when accessed in the conventional manner.

I think it would be OK -- desirable even -- if SSH was the comms protocol instead of telnet.

Any ideas?

I'm new to puppet and vagrant, but I'm developing my own Puppet manifests intended to set up a vagrant box. That is, the puppet manifest is in my Vagrant directory on the host machine, and vagrant is invoking puppet -- there is no puppet server.

The thing is, my workflow is:

 while(not working as desired) {
     vagrant destroy
     amend manifest
     vagrant up
 }

... and this means quite a lot of waiting around.

What's a better way to work?

I'm aware of the issues inherent in load balancing FTP, and throwing in SSL makes it doubly difficult.

Does anyone know of an existing product which does a good job of load balancing RFC4217 FTP/TLS? (also known as FTP/SSL and FTPS)

Note I am not asking about SFTP (SSH's file transfer protocol) -- that is easy to load-balance, but unfortunately not an option I can use.