Techie wrote: > On Thu, Jul 23, 2009 at 10:10 AM, Rich Megginson<rmeggins at redhat.com> wrote: > >> Techie wrote: >> >>> I have what I think is a valid question regarding this.. >>> >>> So say I have my FC8 box acting as one of two MMR members and the CA >>> for all my SSL operations including replication and client access. >>> >>> What is the safe process to upgrade/rebuild the box to FC11 and keep >>> replication agreements and the SSL certs valid or intact. The >>> replication agreements are all over SSL and the certs were issued by >>> this machine. If I take this box down to rebuild/upgrade, the certs >>> will be invalid in my environment correct? >>> >> Why would they be invalid? >> > Well it may be just a lack of understanding on my part. > My thinking was that this host issued all the SSL certs and I would be > rebuilding the box, this in turn may adversely effect the SSL > communications. Judging from your response I assume this is incorrect. > All hosts involved in replication have the CA cert and their server > certs (both issued from this box) in their certificate stores. Because > of this perhaps the SSL communication will still function normally. Yes. > I > have an idea of what I need to do. I will do some research/testing and > see how things go. > I think everything should continue to work fine. > Thank you > > > >>> How would one handle this? >>> >>> Thank you >>> >>> On Thu, Jul 23, 2009 at 8:36 AM, Rich Megginson<rmeggins at redhat.com> >>> wrote: >>> >>> >>>> sigid at JINLab wrote: >>>> >>>> >>>>> Rich Megginson wrote: >>>>> >>>>> >>>>> >>>>>> Techie wrote: >>>>>> >>>>>> >>>>>> >>>>>>> Rich, list, >>>>>>> These are the packages I have installed. Are these the latest for >>>>>>> Fedora 9? >>>>>>> >>>>>>> >>>>>>> >>>>>> Yes, these are the latest. >>>>>> >>>>>> Note that Fedora 9 is soon scheduled for EOL - we will not be releasing >>>>>> any more updates for Fedora 9. I suggest an upgrade to F-10 or F-11 >>>>>> ASAP. >>>>>> >>>>>> >>>>>> >>>>> 1. What could happen if we don't upgrade to fedora 10 or fedora 11? >>>>> >>>>> >>>>> >>>> You won't get any updates of 389 (fedora ds) - unless you build it >>>> yourself. >>>> >>>> >>>>> 2. Is there any prediction on when the 389DS will be release? >>>>> >>>>> >>>>> >>>> We're working on it - Real Soon Now - we just recently had the 389 >>>> packages >>>> approved for Fedora (even though it was essentially just renaming the >>>> packages from Fedora DS to 389, we still had to go through the entire new >>>> package review process . . .) >>>> >>>> >>>>> Thanks >>>>> >>>>> >>>>> >>>> -- >>>> 389 users mailing list >>>> 389-users at redhat.com >>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users >>>> >>>> >>>> >>>> >>> -- >>> 389 users mailing list >>> 389-users at redhat.com >>> https://www.redhat.com/mailman/listinfo/fedora-directory-users >>> >>> >> -- >> 389 users mailing list >> 389-users at redhat.com >> https://www.redhat.com/mailman/listinfo/fedora-directory-users >> >> >> > > -- > 389 users mailing list > 389-users at redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users > -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3258 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.fedoraproject.org/pipermail/389-users/attachments/20090723/88f928f8/attachment.bin
