> I figure you'd need to either run a mini-server on each server (I need >to break this into two pieces and use RMI) to serve configuration & control, or >you could use remote X-windows to run the GUI remotely.
X-Windows is a very bad idea for security reasons. It is a single big piece of cheese (with all kinda holes) if you ask me... Using a dynamical module in apache to do the configurations and file changes that connects with a browser or GUI via Network sounds good to me. If, however, such a thing is done, we need to restrict the access to that feature, as blind trust is always a hackers friend... So we`ld need some config for this tool again ... :-) Good ways to limit trust with just a few things: require a signature (e.g. PGP), an IP-Address within a specified subnet, etc. Any comments ? Stefan Koerner (Relocating e-Mail soon ...)
