--On Wednesday, June 09, 2010 12:26 PM -0700 j@gropefruit.com wrote:
Actually I don't think this idea solely implies "going backwards in development", in fact I think this tool is an excellent idea and shouldn't be immediately balked at by the OpenLDAP team.
slapd.conf is deprecated and will likely be removed in OpenLDAP 2.5.
Let's look at this from the Disaster Recovery standpoint. Consider this:
- One uses slapd.conf as a boot-strap to general the cn=config database
- cn=config works fine at first, and you are able to add new entries to
your runtime configuration, instead of adding them to slapd.conf (the original boot-strapper).
- One day, your Junior admin tries to add an "olc" attribute to your
cn=config backend, only to crash slapd (happens occasionally).
- You start up slapd only to find the cn=config database has been
corrupted.
- You use your original slapd.conf boot-strap to generate a NEW
cn=config backend.
- You find your original bootstrap config LACKS some of the recent
changes your team made to the cn=config DB. So, in essence, you're screwed.
I would suggest you instead take backups of your cn=config database via slapcat. This is what I do, on a nightly basis. If some junior admin makes a mistake, then I can restore it very trivially via slapadd.
The rest of your email is invalid due to the above. bootstrapping via slapd.conf should only be a one-time affair, and not used for disaster recovery.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
On 6/9/10 3:32 PM, Quanah Gibson-Mount wrote:
slapd.conf is deprecated and will likely be removed in OpenLDAP 2.5.
Do all of the overlays support cn=config yet? Last I remember, there were still overlays that didn't work with cn=config.
I would rather that cn=config was working with everything for one entire release before slapd.conf is removed to give those of us that depend on those overlays a chance to migrate -- rather than a repeat of the forced conversion to syncrepl before it was completely baked (which I for one do not think has completely happened even now in 2.4.22).
The previous paragraph is MY OPINION. That and about $5.00 (american) will buy you a good cup of coffee -- or you can get a bad cup of coffee from any McDonald's for price of my opinion plus a buck.
Francis Swasey wrote:
On 6/9/10 3:32 PM, Quanah Gibson-Mount wrote:
slapd.conf is deprecated and will likely be removed in OpenLDAP 2.5.
Do all of the overlays support cn=config yet? Last I remember, there were still overlays that didn't work with cn=config.
If your memory is correct, you're welcome to submit patches.
I would rather that cn=config was working with everything for one entire release before slapd.conf is removed to give those of us that depend on those overlays a chance to migrate -- rather than a repeat of the forced conversion to syncrepl before it was completely baked (which I for one do not think has completely happened even now in 2.4.22).
All of the core overlays support cn=config.
You can always pull slurpd from CVS if you enjoy that sort of thing, no one put a gun to your head to force you in any direction.
openldap-technical@openldap.org
-
Francis Swasey -
Howard Chu -
Quanah Gibson-Mount