Database driven ACL
/dev/rob0
rob0 at gmx.co.uk
Mon Feb 29 21:04:16 UTC 2016
On Mon, Feb 29, 2016 at 11:18:33AM +0200, Ali Jawad wrote:
> Is there a mature/tested method of loading ACLs through a DB query
> instead of editing the config file or reading/writing into a text
> file ?
I like this idea. I'd further suggest using either:
1. An abstraction layer such that any DB backend might be used; or
2. sqlite3
The latter would be my personal choice for backend anyway, because
it's going to have the speed and reliability of reading from local
files (no dependence on a running RDBMS), and the weaknesses of
sqlite3 (such as multiple simultaneous file writes) should not be a
problem (because named would not be doing writes, only reads.)
That said, it's not difficult to script something which would
populate an "include" file from a database and run "rndc reconfig"
when changes are made. (I guess that's what you meant about
"reading/writing into a text file".)
--
http://rob0.nodns4.us/
Offlist GMX mail is seen only if "/dev/rob0" is in the Subject:
More information about the bind-users
mailing list