[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Why do the mpi packages depend on rsh, etc?

Camm Maguire wrote:

> Greetings!  I don't know about mpich, but lam does have support for
> using ssh in place of rsh.  The problem is is that the default is a
> compile time option, which can optionally be over-ridden at run-time.
> So in building a Debian package, one has to choose a default, (which
> should be rsh instead of ssh for most users, due to speed and the
> internal network topology of most clusters), and if a dependency is
> not made on that default, then the package simply won't work unless
> the user sets their LAMRSH environment variable.  I suppose one could
> duplicate lam-runtime into a lam-runtime-ssh, but this seems a bit
> excessive.  If you want to use lam with ssh, just install rsh, disable
> it in inetd, set LAMRSH="ssh -x", and you're ready to go!

Could I ask a clarification question?

It sounds like from a security/performance standpoint, heimdal might be the
optimal way to go- you get strong authentication and fast communication.  You just
have to run a kerberos server.

Or is there something I don't know about heimdal which would slow things down a
lot?  I don't believe it encrypts all communications, just the ticket verification
for authentication...

           Adam Powell                     http://lyre.mit.edu/~powell/
           Thomas B. King Assistant Professor of Materials Engineering
           77 Massachusetts Ave. Rm. 4-117         Phone (617) 452-2086
           Cambridge, MA 02139 USA                   Fax (617) 253-5418

Reply to: