[5380] in Kerberos
Re: replacement for kprop?
daemon@ATHENA.MIT.EDU (D'n Russler)
Wed Jun 14 09:45:41 1995
Date: Wed, 14 Jun 1995 16:21:15 +0300 (IDT)
From: "D'n Russler" <d_n@jer1.co.il>
To: "Derrick J. Brashear" <db74+@andrew.cmu.edu>
Cc: kerberos@MIT.EDU
In-Reply-To: <ojrSVWq00WCQFIulpb@andrew.cmu.edu>
On Tue, 13 Jun 1995, Derrick J. Brashear wrote:
> Date: Tue, 13 Jun 1995 15:34:58 -0400
> From: Derrick J. Brashear <db74+@andrew.cmu.edu>
> To: kerberos@MIT.EDU
> Subject: replacement for kprop?
>
> Hi,
>
> Has anyone considered any sort of means of replacing kprop, i.e.
> something where an entire database would not need to be propagated
> (probably at some point in time after password changes etc have already
> taken place) to something transaction based? My thoughts:
>
> Assuming the model of master-slave(s) is to be kept, the kadmind
> listening on the master attempts to forward all transactions to it's
> slaves. Any slaves which are not responding have the transaction
> enqueued to be performed when the slave can be contacted again. If a
> certain "timeout" period elapses, the slave instead gets a fresh
> database from the master when it can be contacted, and any enqueued
> transactions are removed.
>
> I'm open to other ideas, as well.
>
> -D
>
>
Your suggestion recalls the old HOST.TXT model. Perhaps it could be
done on a demand-basis, where each slave notifies the master at regular
intervals as to the date/time of its db, and the master decides whether
to download a fresh copy.
This could also add a measure of assurance, BTW. The master would know
at all times the state of its slaves, and could log/etc. when an expected
query didn't come. Also, the slaves would be constantly identifying
themselves (once an hour, twice a day, whatever) to the master, thus
making slave-impersonation (to obtain a copy of the db) more difficult.
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
D'n Russler NetMedia (Home of Jerusalem One)
Assistant Systems Specialist -------------------------------------
d_n@jer1.co.il "Information at the Speed of Thought"
........................................................................
Phone: (02) 795-860 Fax: (02) 793-524
info@NetMedia.co.il info@jer1.co.il
........................................................................
