On Tue, Feb 15, 2011 at 6:32 PM, Stephen Burke <[log in to unmask]> wrote:
> Testbed Support for GridPP member institutes [mailto:TB-
>> [log in to unmask]] On Behalf Of Peter Grandi said:
>> The main question is whether there is somewhere a good list of where to
>> get the right '.lsc's "scriptably"
>
> I would like to add "securely" to that - the lsc files are a root of trust for anyone you let into your site, so you should be certain that they are correct!
>
> Stephen
The current way the .lsc files are distributed is really stupid in my
opinion. They are identical per VO
at every site and along with a UI's /etc/voms/dteam, cms, ... files
are identical at every site.
For me the obvious way to distribute them is a single RPM for each VO
containing the .lsc files and client
/etc/voms/* files.
I started putting something together here
https://github.com/traylenator/VOMS-Configuration and if
I ever do some more I'll try and push this in the EGI direction. Don't
use what is there , it's not correct, I was
just working on the principal.
Feel free to say the current solution is not good though and you have
my support.
Steve.
>
--
Steve Traylen
|