[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?

To: "'Howard Chu'" <hyc@symas.com>, "'Simone Piccardi'" <piccardi@truelite.it>, <openldap-technical@openldap.org>
Subject: RE: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
From: "Paul B. Henson" <henson@acm.org>
Date: Tue, 13 May 2014 17:31:51 -0700
Content-language: en-us
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:from:to:references:in-reply-to:subject:date:message-id :mime-version:content-type:content-transfer-encoding:thread-index :content-language; bh=17ZxoLibImmstYPRYhwlFJZrX+j+kFv3BXSCeioX3SE=; b=vdiUksNv4I3uMy8AuPk4pN1v8xU4TRTsqvzwCLXL1Uy0pHp51i1lYlSuELrOnflFSi 5um6j7ifcchqyZQrFbzrLDOjmmvwFyQkyeIfAmw+/nk4doY0JTmGMkgBufgmo0fzwQl/ 3Ex0U6SCqPlSFKmW68sHUIj6bQ0FvQ24aIuntcNiSm9yH0aAXeSC5zL27/sh+5TH4eLC jYqQILFN/0H0pjGbYGrrUILE5w74SpLmt2A0k/0n1LSKJEkWjZg/1mvBNnd0/UpTSaha hDEHFhsfDwAA0j6XiWw4KXDZg7BSf+7Kvnzv9daPDJZP7dXJLoxTuqHLMEVK9uwyPANm 137Q==
In-reply-to: <5372A397.20901@symas.com>
References: <CAPcb_GK5B=-PzNuxY8wNkh+n-FRhnv0snDAcLYxjqhun1H97Bw@mail.gmail.com> <52EA7F3D.2090905@symas.com> <DBB1B1AD-EE28-4E1E-AF18-9974DC9CC06B@bayour.com> <52EA8929.2010309@symas.com> <59281912-8B90-495E-8FAC-99330FF17CD4@bayour.com> <52EA9B80.6030309@symas.com> <973E272C-A2BC-4C0B-B943-479EB299D4A5@bayour.com> <E092458822F5A957DE3F6C2F@[192.168.1.2]> <070e01cf1eeb$ded56ab0$9c804010$@acm.org> <52ECD00E.5020305@stroeder.com> <0add01cf2382$6605f1e0$3211d5a0$@acm.org> <52F40E72.7010209@ironicdesign.com> <alpine.BSF.2.00.1405130929550.49631@pohjola.cksoft.de> <20140513120147.Horde.jjZOHD0UGIM_0uW2jC29Vg1@mail.netauth.com> <537276B8.7000708@truelite.it> <5372A397.20901@symas.com>
Thread-index: AQIBehI6Zsy2IgA9h4PWn4vMBbyeRgIgku54AOI7f4gCya3NPQFaqgteAXLxKjsBZp0LWQGCnAbIAU2qZqsCGsjm0wLmKQUmAoksc60CL8XzKwJckYOJAYOzv4MCMFyVXJn2R3oQ

> From: Howard Chu
> Sent: Tuesday, May 13, 2014 3:59 PM
>
> That's not really dynamic configuration. Anything that requires you to
> physically login to a server to issue a change is not scalable. With cn=config
> you can delegate configuration privileges across an arbitrarily large network,
> without requiring any host/OS privileges.

Ah, yes, the "I'm going to redefine terminology so your argument is no longer valid" approach.

I never said I had to or planned to physically login to a server to make a change. I simply said that reloading a flat text configuration file and applying any configuration changes in it is a valid and reasonable approach. Perhaps in a scenario where the person managing the LDAP server configuration does not have any operating system privileges, your feature would be invaluable. But in an environment where the person managing the operating system configuration itself is also managing the LDAP server configuration, it is meaningless. What next, you're going to offer the feature for slapd to proxy changes to the operating system configuration files via the LDAP interface? You just don't seem to understand or accept that deployment scenarios other than the one you envision exist, are useful, or should be supported, and that the ability to manage openldap via existing infrastructure that is already managing other systems and applications is a valuable feature.

> Most people didn't "need" electricity when they still had oil lamps...

Many people still drive a manual transmission vehicle even after the widespread availability of the automatic transmission. See, I can spew irrelevant platitudes tooâ

You can reply to this if you like, but I'm done with the debate, as clearly you will never accept an alternative viewpoint and banging my head against a concrete wall is not my favorite hobby. While I have great respect for your skills and knowledge, and great appreciation for your work with openldap, I think your opinion on this particular topic is a bit too artificially ingrained.

Follow-Ups:
- Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
  - From: Howard Chu <hyc@symas.com>

References:
- Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
  - From: Andy Dorman <adorman@ironicdesign.com>
- Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
  - From: Christian Kratzer <ck-lists@cksoft.de>
- Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
  - From: Mike Jackson <mj@netauth.com>
- Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
  - From: Simone Piccardi <piccardi@truelite.it>
- Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
  - From: Howard Chu <hyc@symas.com>

Prev by Date: RE: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?
Next by Date: RE: password policy module memory leaks / excessive replication?
Index(es):
- Chronological
- Thread