| Subject | Re: User Security for multiple servers |
|---|---|
| Author | mikcaau |
| Post date | 2005-06-10T03:44:21Z |
--- In firebird-support@yahoogroups.com, Steve Wiser <steve@s...> wrote:
I think (am sure) that you'll have problems with rsync.
rsync on databases will (almost) always catch the database in an
unstable state, some parts of a transaction will have been posted and
other parts will be yet to be posted. This is a recipe for disaster.
GBak works, GBak + zip or tar makes a small backup.
To keep all your passwords in sync,
All I can suggest is that your usermanager be an additional
application that receives manage user activities and posts them onto
each of your servers.
Perhaps it would be possible to establish events on isc4.gdb and
intercept these events with a script that send the information to your
other servers - but I think you'd find that the password is already
encrypted.
The first solution lokks easier.
Mick
> Hi Everyone,Steve,
>
> Still no response to my question, maybe it is too vague... Basically
> my installation is getting too big to handle with having to maintain
> separate security databases for each server. I really would love to see
> something like LDAP for all of these DB servers like we have on our file
> servers. My setup is basically:
>
> Main Site:
> 10 DB servers (hosting around 20 different Interbase databases)
>
> Backup Site:
> 10 DB servers (rsyncing the gdb files from the main site nightly)
>
> Alternate Site:
> 3 DB servers (hosting special Data Entry only Interbase databases that
> feed back into the main site every 10 minutes)
>
>
> It is starting to become unmanageable to keep all of these isc4.gdb
> files in sync all of the time. Any help from anyone else with the same
> situation would be greatly appreciated. We are mulling over moving to
> Firebird once SMP support because available, but our main app uses the
> BDE and InfoPower components like crazy and I am not sure on the
> Firebird support for that.
>
> Thanks,
> Steve
>
>
> On Wed, 2005-06-08 at 11:10 -0400, Steve Wiser wrote:
>
> > Hi,
> >
> > We are using Interbase 5.6 (classic) for linux. We currently have
> > 10
> > production servers housing about 200 GB of Interbase databases (we are
> > NOT using replication, these servers house databases for different
> > clients, but our employees need access to all of them). In addition
> > to
> > these 10 servers we have 10 more at a backup location and another 3 at
> > yet another location. We are running into problems with synchronizing
> > the ISC4.gdb files across all of the servers. Right now we have an
> > in-house Delphi app that we give our business people that allows them
> > to
> > create and modify Interbase users without having access to SYSDBA and
> > other bad stuff. This app will synchronize their actions across all
> > of
> > the servers, however there are cases when the link is not functioning
> > properly between buildings or 1 of the servers is down and this causes
> > the ISC4.gdb files to get out of sync with each other. Anyone else
> > running Interbase on multiple servers and how do you keep your ISC4
> > files in sync?
> >
> > Thanks,
> > Steve
> >
I think (am sure) that you'll have problems with rsync.
rsync on databases will (almost) always catch the database in an
unstable state, some parts of a transaction will have been posted and
other parts will be yet to be posted. This is a recipe for disaster.
GBak works, GBak + zip or tar makes a small backup.
To keep all your passwords in sync,
All I can suggest is that your usermanager be an additional
application that receives manage user activities and posts them onto
each of your servers.
Perhaps it would be possible to establish events on isc4.gdb and
intercept these events with a script that send the information to your
other servers - but I think you'd find that the password is already
encrypted.
The first solution lokks easier.
Mick