[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: BDB backup and security





--On Tuesday, April 22, 2003 7:50 PM +0200 Tarassov Vadim <Vadim.Tarassov@winterthur.ch> wrote:

Hi Quanah,

So, I personally have no input into which of
those methods is best, because that solution is not one we chose to
pursue.  If you want to think about what OpenLDAP provides as a backup
mechanism,  that is slapcat.  BDB provides db_dump or db_archive.

And what is the one you choose to pursue? You see, due to some reasons I am paranoid when goes about security things. Putting gziped LDIF representing your LDAP instance on corporate backup facility (sort of TSM) is definitely not acceptable for me. How do you solve this problem (if of course it is a problem for you)? Do you encrypt it?

Vadim,

at the top of that email, I noted.. we export via slapcat to LDIF. That LDIF file is compressed and copied into a secure location of our AFS space (controlled by AFS ACL's), with 5 days worth of exports stored there.

--Quanah


-- Quanah Gibson-Mount Senior Systems Administrator ITSS/TSS/Computing Systems Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html