I believe that currently the gmetad collector shares all or none of its data based on an access list of allowed IP addresses, correct?
I have a few questions about the future plans of ganglia with respect to security. I would basically like to know if it will be possible to limit the type of data that is sent to other gmetad collectors. I was looking through Matt's slides from a talk he gave and noticed that the data will be stored in a hierarchical data structure and there will exist a query system that will allow one to ask for only a subset of the data. I would like to know if this will work in the other direction so that a collector will be able to select a subset of data it allows other collectors access to. The reason I am asking is because we are planning on testing ganglia here to monitor our servers and compute farm for both our internal local facility monitoring use (where we will restrict who can view the data) and for more public use by our users. We are very concerned about some of the data that is exported to collectors because our compute farm is intentionally not kept up to date with the latest security patches. We would like to have our own collector monitor everything and at the same time allow our users access to a subset of this data for their own use, like their own public web servers which might add in data from other clusters, monitoring/scheduling scripts and globus MDS. ~Jason -- /------------------------------------------------------------------\ | Jason A. Smith Email: [EMAIL PROTECTED] | | Atlas Computing Facility, Bldg. 510M Phone: (631)344-4226 | | Brookhaven National Lab, P.O. Box 5000 Fax: (631)344-7616 | | Upton, NY 11973-5000 | \------------------------------------------------------------------/
