On Fri, Nov 03, 2006 at 12:22:05PM +0100, Lars Marowsky-Bree wrote: > On 2006-11-03T11:47:27, Andrew Beekhof <[EMAIL PROTECTED]> wrote: > > > >> http://www.linux-ha.org/ConfiguringStonithPlugins > > >That page doesn't answer my question. It shows a stonith > > >configuration which is in the CIB. I would like to have > > >configuration in an external file and refer to that file in the > > >CIB. That's preferable for security reasons. > > Anyone who can modify the CIB can make your entire cluster misbehave, > shutdown services, corrupt data, ... and so on.
It's not about modifying, but reading the CIB. Or did I miss something? > The CIB has to be considered privileged data already. Whether you store > the password in there or not doesn't matter much. > > > Sincerely, > Lars Marowsky-Br?e > > -- > High Availability & Clustering > SUSE Labs, Research and Development > SUSE LINUX Products GmbH - A Novell Business -- Charles Darwin > "Ignorance more frequently begets confidence than does knowledge." > > _______________________________________________________ > Linux-HA-Dev: Linux-HA-Dev@lists.linux-ha.org > http://lists.linux-ha.org/mailman/listinfo/linux-ha-dev > Home Page: http://linux-ha.org/ _______________________________________________________ Linux-HA-Dev: Linux-HA-Dev@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha-dev Home Page: http://linux-ha.org/
