From owner-freebsd-hackers@FreeBSD.ORG  Thu Jan 11 18:25:38 2007
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
X-Original-To: hackers@freebsd.org
Delivered-To: freebsd-hackers@FreeBSD.ORG
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id A268016A416
	for <hackers@freebsd.org>; Thu, 11 Jan 2007 18:25:38 +0000 (UTC)
	(envelope-from phi@evilphi.com)
Received: from mail.twinthornes.com (mail.twinthornes.com [65.75.198.147])
	by mx1.freebsd.org (Postfix) with ESMTP id 7E0C113C474
	for <hackers@freebsd.org>; Thu, 11 Jan 2007 18:25:38 +0000 (UTC)
	(envelope-from phi@evilphi.com)
Received: from [10.9.70.3] (c-24-20-142-99.hsd1.or.comcast.net [24.20.142.99])
	by mail.twinthornes.com (Postfix) with ESMTP id AA998E15;
	Thu, 11 Jan 2007 09:57:27 -0800 (PST)
Message-ID: <45A67A34.5080001@evilphi.com>
Date: Thu, 11 Jan 2007 09:56:04 -0800
From: Darren Pilgrim <phi@evilphi.com>
User-Agent: Thunderbird 1.5.0.9 (Windows/20061207)
MIME-Version: 1.0
To: Mike Meyer <mwm-keyword-freebsdhackers2.e313df@mired.org>
References: <60737.24.71.119.183.1168496463.squirrel@webmail.sd73.bc.ca>	<45A5EA3B.9020000@datalinktech.com.au>	<20070111035549.7c11a450@vixen42>
	<17830.29050.791321.480369@bhuda.mired.org>
In-Reply-To: <17830.29050.791321.480369@bhuda.mired.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Mailman-Approved-At: Thu, 11 Jan 2007 18:39:13 +0000
Cc: hackers@freebsd.org, Vulpes Velox <v.velox@vvelox.net>
Subject: Re: LDAP integration
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Jan 2007 18:25:38 -0000

Mike Meyer wrote:
> In <20070111035549.7c11a450@vixen42>, Vulpes Velox <v.velox@vvelox.net> typed:
>> LDAP is nice organizing across many systems, but if you are just
>> dealing with one computer it is complete over kill for any thing.
> 
> In that situation, it's not merely overkill, it's may actually be a
> bad idea. Can you say "AIX SDR"? How about "Windows registry"?
> 
> Those system both took the approach of putting all the configuration
> information in a central database. This creates problems because the
> tools needed to examine/fix the config database require a complex
> environment - at least compared to a statically linked copy of
> ed. LDAP may not be so bad, but it still makes me nervous.
> 
> On the other hand, if you've got a flock of boxes to manage, having a
> way to tell the rc subsystem "Go read config values from this LDAP
> server" seems like a very attractive alternative.

And to think, all these years I've been wasting my time and effort using 
NFS and rsync to centralize the configurations of server farms.

-- 
Darren Pilgrim