[Freeipa-devel] SSL
Karl MacMillan
kmacmill at redhat.com
Thu Jul 12 18:34:14 UTC 2007
On Thu, 2007-07-12 at 14:31 -0400, Simo Sorce wrote:
> On Thu, 2007-07-12 at 11:34 -0400, Rob Crittenden wrote:
>
> > I think we need to revisit the resistance to Apache here. It already
> > provides kerberos authentication with ticket forwarding. It seems
> > like
> > reinventing the wheel doing it in Python instead. koji/brew use
> > Apache
> > as the front-end and it seems to work ok.
>
> If you can come up with a simple way to drop a configuration file in the
> pache dir that does all we need (simply doing an service httpd restart)
> then I think using apache may make sense.
> I don't think people will use the same box to store identities and to
> serve casual HTTP content anyway :)
>
That's fine with me - and we already require it for the DS admin server.
And since we were planning on taking over port 80 with some server I
don't think people could use the box for web serving anyway.
What about the xml-rpc layer though?
Karl
More information about the Freeipa-devel
mailing list