[Ganglia-developers] Ganglia3 security.

[Jason A. S. <sm...@bn...>]

I believe that currently the gmetad collector shares all or none of its
data based on an access list of allowed IP addresses, correct?

I have a few questions about the future plans of ganglia with respect to
security.  I would basically like to know if it will be possible to
limit the type of data that is sent to other gmetad collectors.  I was
looking through Matt's slides from a talk he gave and noticed that the
data will be stored in a hierarchical data structure and there will
exist a query system that will allow one to ask for only a subset of the
data.  I would like to know if this will work in the other direction so
that a collector will be able to select a subset of data it allows other
collectors access to.

The reason I am asking is because we are planning on testing ganglia
here to monitor our servers and compute farm for both our internal local
facility monitoring use (where we will restrict who can view the data)
and for more public use by our users.  We are very concerned about some
of the data that is exported to collectors because our compute farm is
intentionally not kept up to date with the latest security patches.  We
would like to have our own collector monitor everything and at the same
time allow our users access to a subset of this data for their own use,
like their own public web servers which might add in data from other
clusters, monitoring/scheduling scripts and globus MDS.

~Jason


-- 
/------------------------------------------------------------------\
|  Jason A. Smith                          Email:  sm...@bn... |
|  Atlas Computing Facility, Bldg. 510M    Phone:  (631)344-4226   |
|  Brookhaven National Lab, P.O. Box 5000  Fax:    (631)344-7616   |
|  Upton, NY 11973-5000                                            |
\------------------------------------------------------------------/