issue with MIT KDC and LDAP DS
Roland Dowdeswell
elric at imrryr.org
Tue May 26 16:35:59 EDT 2009
On 1243115121 seconds since the Beginning of the UNIX epoch
Ken Raeburn wrote:
>
> * multiprocess KDC running several independent instances in parallel
>(relatively simple and quick to code: fork after opening sockets,
>(re)open database connections after forking, let multiple processes
>all grab for any available network traffic detected; this leads to
>contention and wasted cycles, but only when more than one process is
>idle; it also may not balance load well in certain circumstances)
I submitted a patch to RT to add an inetd mode to the KDC. If you
use that mode, then you can trivially write a parent that performs
the bind logic and spawns off a number of children. This would
have the added benefit of providing a parent process that could
restart kids if they crash.
--
Roland Dowdeswell http://Imrryr.ORG/~elric/
More information about the krbdev
mailing list