[OpenAFS] Security Advisory 2016-003 and 'bos salvage' questions
Garance A Drosehn
drosih@rpi.edu
Tue, 04 Apr 2017 14:04:43 -0400
On 4 Apr 2017, at 9:45, Harald Barth wrote:
> Is there any reason why the -salvagedir requires -all?
> We run dafs.
>
> To minimize downtime I'd like to use this per volume or if that is not
> possible at least per partition so I don't need to shut down the
> complete fileserver for this. Ok, I can move one volume to a dedicated
> salvage fileserver at a time and then out again, but that is tedious.
FWIW:
I have a spare fileserver here at RPI, which has a vicepa partition
that's about half the size of the partitions on our main fileservers.
So I've used the tactic of moving the busiest 5-10% of non-replicated
volumes on one production fileserver to that spare fileserver, then
'-salvagedir -all' both the production & spare fileservers, and then
move the volumes back. That way the busiest volumes are unavailable
for a relatively short amount of time, and very few people are effected
by the fileserver which is unavailable for the longer period of time.
(note that we're not running with DAFS)
--
Garance Alistair Drosehn = drosih@rpi.edu
Senior Systems Programmer or gad@FreeBSD.org
Rensselaer Polytechnic Institute; Troy, NY; USA