[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] dump-only server (gossip but not public pool availabilit
|
From: |
brent s. |
|
Subject: |
Re: [Sks-devel] dump-only server (gossip but not public pool availability) |
|
Date: |
Sun, 4 Feb 2018 19:43:54 -0500 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0 |
On 02/04/2018 07:26 PM, Hendrik Visage wrote:
> Good day,
>
> As I can’t dump the SKS database while running, and the file snapshot
> setup not quite feasible for my setup(s) yet, I was wondering about a
> gossiping only server (and only gossiping to a limited set servers close
> peers) that isn’t connected/advertised to the SKS pool.
> This would then be a server I could easily take offline and dump keys
> every so often, not impacting the pool availability etc.
>
> Which settings should I use to achieve the above, as it seems the moment
> I start the server, it starts to broadcast it’s availability to be
> included in the pool?
i do the same thing by just running the dump box behind a NAT without
any port forwarding (and running the gossip over a vpn to my "real" peer
box).
i presume if you firewall off the HKP/HKPS port(s) and only expose the
recon port, it won't get listed in the pool.
--
brent saner
https://square-r00t.net/
GPG info: https://square-r00t.net/gpg-info
signature.asc
Description: OpenPGP digital signature