I think you'll need to make sure that you're using a _modern_ version of
Berkeley DB, rather than what comes with MIT Kerberos.
Years ago, Cygnus tested the BDB code in Kerbnet with a million
principal database. We did not observe any problems (well, we fixed
the ones we observed :-). That
On Fri Feb 1 11:07:22 2002, Nicolas Williams said:
On Fri, Feb 01, 2002 at 10:20:04AM -0800, Mike Friedman wrote:
Looking down the road around here, we may wind up having to populate our
KDC with alumni, in addition to the students, staff and 'affiliates' that
we have now. Which means
On Fri, Feb 01, 2002 at 11:34:43AM -0800, Mike Friedman wrote:
Thanks for the feedback. My initial concern was mainly with the MIT K5
software itself, but clearly I need to worry about ancillary processes
as well.
I would say the biggest issue is replication, not the operation of the
krb5kdc