hi,all
this is a tips, when you run puppet in a big data center. you
need run more than one puppet master. this is a trouble. and if the
puppet master hacked by hacker. all client will be in danger.
but run puppet in client mode , can resolve this two problem.
the first . client just download the puppet manifest from a ftp or
http server with ssl connect. so ,just only one simple puppet manifest
distribute server. the second . use the gpg sign the puppet manifest.
so the client only run the manifest when the puppet manifest's sign
is right. and the client will import the gpg public key.
if you have some problem ,please ask me.
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.
