Kerberos authentication. Easier than pubkeys, and more secure.<br clear="all">Fahad Sadah<br>
<br><br><div class="gmail_quote">2009/7/29 John at Darkstar <span dir="ltr"><<a href="mailto:vacuum@jeb.no">vacuum@jeb.no</a>></span><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Perhaps there could be some kind of central management of some kind.<br>
<br>
One thing is distribution of the open databases. It should not be<br>
necessary to set up replication for each and every toolserver.<br>
<br>
Some kind of central authentication so access can be federated perhaps,<br>
yet authorization should be enforced locally.<br>
<br>
But then perhaps we could use the same facility if the internal access<br>
rules on the various servers could be more stringent, that is a<br>
Norwegian server is for Norwegian use only - even if its located in the<br>
cluster. More like a webhotel with server hosting for chapters. Now,<br>
make it even more general and say virtual servers for the chapters own<br>
use and make them off-limit for other bot operators.<br>
<br>
Still, note that such a server, virtual or not, has to be under complete<br>
control of the individual chapter. Even sharing backup tapes could be<br>
troublesome.<br>
<div class="im"><br>
> I would suggest though that we should set up some means of exchanging info<br>
> between the different projects of that kind - to my knowledge, there'S the boxes<br>
> in poland, now in norway, and wmde's toolserver. Do you know of more? What would<br>
> be a good way to communicate? Yet another mailing list?<br>
<br>
</div>I don't think another mailing list is necessary. If a toolserver-box is<br>
used for something else that need higher confidentiality then it should<br>
go on a local chapter list or something similar.<br>
<br>
> -- daniel<br>
<font color="#888888"><br>
John<br>
</font><div><div></div><div class="h5"><br>
_______________________________________________<br>
Toolserver-l mailing list<br>
<a href="mailto:Toolserver-l@lists.wikimedia.org">Toolserver-l@lists.wikimedia.org</a><br>
<a href="https://lists.wikimedia.org/mailman/listinfo/toolserver-l" target="_blank">https://lists.wikimedia.org/mailman/listinfo/toolserver-l</a><br>
</div></div></blockquote></div><br>