[2770] in Kerberos
Re: KDC shutdown
daemon@ATHENA.MIT.EDU (Charles L. Athey III)
Thu Aug 5 12:43:07 1993
Date: Thu, 5 Aug 93 09:27:15 PDT
From: athey@lorien.ocf.llnl.gov (Charles L. Athey III)
To: ramus@nersc.gov
Cc: kerberos@Athena.MIT.EDU
Date: Wed, 4 Aug 93 17:43:40 PDT
From: ramus@nersc.gov (Joe Ramus)
>
> Is there a command to do an orderly shutdown of the Kerberos 5 KDC?
> I have been using "kill" to do it but is that "safe"?
> Suppose that someone is changing their password just as I send
> the kill signal.
>
>Yes, it most certainly is safe. The Kerberos KDC only opens the
>Kerberos database in readonly mode. It is the kadmind which gets
>involved with someone changing their password, and even if there isn't
>now, there ought to be code so that it will clean up and exit after
>receiving a normal kill signal.
>
> - Ted
Ted's is corrected - it is safe BUT if you are running Sandia's version the
database might very well be open read-write. Sandia's version has
the option of running in readonly or read-write mode.
Chuck Athey
athey@llnl.gov
