[bind10-dev] BigTool and new module Command/Control
Jelte Jansen
jelte at isc.org
Thu Nov 19 14:09:11 UTC 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
ZhangLikun wrote:
> As we talked about in the f2f meeting, a new module Command/Control is
> imported, I made a big picture here, welcome any comment. :)
>
> Features of Command/Control:
> 1. Check user privileges.
> Information for users and privileges are predefined and saved in
> Configure Manager.
> 2. Dispatch commands to proper module.
>
> When Command/Control starts up, it will get all available modules from
> Configure Manager, and if a new module is added, Command/Control should get
> the notice.
>
i'm not sure whether c/c needs to keep the list of modules and their commands in
memory, in principle it could also just pass the info directly from the config
manager to bigtool if asked for it
(i'm about ready to try to figure out how that would work, including what to do
when modules get added/removed while bigtool is running, and how to handle the
relationship between commands and optional related configuration data, all of
which are pretty much open questions atm)
> The message between Command/Control and BigTool is encrypted.
> Symmetric key encryption VS Public key encryption. I think symmetric key
> encryption is enough, because the key is only shared by the user and server.
> Please give your comments. :)
>
seems ok to me (for now? would administrators want some kind of certificate with
asymm crypto here?)
Jelte
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAksFUYcACgkQ4nZCKsdOncWB5ACfUPogOr5Wh4HrecFndBQhmcVk
l7YAoIARkgXAshEoxTmloAr3+1N2o1Wy
=q6wA
-----END PGP SIGNATURE-----
More information about the bind10-dev
mailing list