[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: How wold you go about writing a new OpenLDAP backend?

To: John Lewis <oflameo2@gmail.com>
Subject: Re: How wold you go about writing a new OpenLDAP backend?
From: Prentice Bisbal <pbisbal@pppl.gov>
Date: Fri, 2 Jun 2017 13:19:48 -0400
Cc: Howard Chu <hyc@symas.com>, openldap-technical@openldap.org
Content-language: en-US
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pppl-gov.20150623.gappssmtp.com; s=20150623; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding:content-language; bh=msH2FkWjuS5Pc6rIWx+RLXGh2+e6aPd5CsGRaG9O0MM=; b=ntV2RQQCXKhxoUSFg9eEar5zxBjBtVrT3LQAiw+0hgPR3oEIDSp0V1tfbewOVIqAIi rpEMImJMjrDJoPPkgvE9TXtg+JydZPzi04lhx2q6V/y7vMpPBiYtuF1AXnj5leaavSam 3j5RaQtmyASPFa4TGUGj4PbBa4QqrMk5HzVsRAs4HTPD4OzNOvT33FezAJce6IsFLXE4 F1Edjaisbu+CbbxwNlAEhokh5yV5zBpgloGY55mKicjWgQ7hi5mRN4LWCTl/qL04LYWW wjn/bDRw/7TFFUQQeiFSP1reVnZg+U7eM19TNWoGQgazqAxnBUXpLXVPopYZDY4UWR+z F8tw==
In-reply-to: <1496263193.2987.11.camel@gmail.com>
References: <1496205432.24282.55.camel@gmail.com> <7725a836-a6fd-2a6a-d4ae-3a4d8f4dcd39@pppl.gov> <WM!aeccca996b27959e587df3f355b2e5c2a0fc74c3173f39e10273d6ce021835564547c99115572b4270f0198ed543ffe9!@mailstronghold-2.zmailcloud.com> <771d3994-a1f8-7751-bb32-451872bc9b0e@symas.com> <e101181f-3d28-29a3-bdd1-e3ce056c87a2@pppl.gov> <1496263193.2987.11.camel@gmail.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.1.0

On 05/31/2017 04:39 PM, John Lewis wrote:

On Wed, 2017-05-31 at 15:07 -0400, Prentice Bisbal wrote:

On 05/31/2017 02:55 PM, Howard Chu wrote:

Prentice Bisbal wrote:

On 05/31/2017 12:37 AM, John Lewis wrote:

This sounds like the wrong tool for this job.

Really? Can you give a point by point comparison against what you
think is the "right" tool for the job?

That's the wrong question to ask, since I never made any claim as to
what the right tool is. A better question to ask would be why I think
this is the wrong tool. So here's my reply to that: It doesn't seem like
this is a job LDAP was designed for. To me, LDAP is really just a
standardized database interface that make certain type of DB looks up
easy, and most importantly, standardized.I would think a more general
purpose database interface would be better for this.

Unfortunately, I'm not a database expert, so I can't give you the
"point-by-point argument you requested.

Now your turn - why would OpenLDAP be a good fit for this over other
databases?

--
Prentice

Yes, LDAP is really just a standardized database interface. That is the
point. I want my logs available through an IETF standardized protocol so
I can reuse tools so I don't have to maintain as many tools.

OpenLDAP would be a good fit over other databases because Michael, and
Howard, and the other contributers to OpenLDAP did most of the work for
me.

Fair enough answer. How would you store and retrieve your results? Areyou creating/using a schema specifically for this? If so, what does itlook like.

I'm still having trouble seeing the performance benefits, though. Thedata is still stored in a backend DB, right? Let's say that backend issome sort of SQL DB. You write your ldapsearch query, and then LDAPconverts that to SQL, and then the DB returns the results to LDAP, whichthen translated the results to LDIF and returns them to you. Isn't thereperformance hits every time you traverse the LDAP layer?

I suppose this might still be faster than reading a plain-text log file.Is that the point I'm missing?


Prentice

Follow-Ups:
- Re: How wold you go about writing a new OpenLDAP backend?
  - From: John Lewis <oflameo2@gmail.com>

Prev by Date: Re: problem with syncrepl and STARTTLS
Next by Date: Re: How wold you go about writing a new OpenLDAP backend?
Index(es):
- Chronological
- Thread