[mirror-admin] push mirroring - who owns the SSH keys?
Andrew McNabb
amcnabb at mcnabbs.org
Sat Jun 20 11:56:24 EDT 2009
On Sat, Jun 20, 2009 at 07:52:38AM -0500, Matt Domsch wrote:
>
> Thinking about the SSH push method, and particularly, key management.
> Should MM create the keypairs and maintain them? This would give a
> lot of flexibility to downstream mirrors, being able to change their
> upstream "at will" (edit the upstream field in MM, and you immediately
> start to get notifications when your upstream changes; no need to have
> your new upstream mirror admin get involved). But would people feel
> comfortable with this?
Are you recommending doing an 'ssh push' for Fedora? This definitely
wouldn't work for our site. Even if I were comfortable with this
myself, it would be impossible for me to get permission to set this up.
I prefer the lightweight polling approach. We could have a cron job
make an HTTP request once every 10 to 30 minutes to check whether any
updates are available.
--
Andrew McNabb
http://www.mcnabbs.org/andrew/
PGP Fingerprint: 8A17 B57C 6879 1863 DE55 8012 AB4D 6098 8826 6868
--
More information about the Mirror-admin
mailing list