diff options
Diffstat (limited to 'server/zephyrd.8.in')
-rw-r--r-- | server/zephyrd.8.in | 129 |
1 files changed, 129 insertions, 0 deletions
diff --git a/server/zephyrd.8.in b/server/zephyrd.8.in new file mode 100644 index 0000000..eef9780 --- /dev/null +++ b/server/zephyrd.8.in @@ -0,0 +1,129 @@ +.\" $Id$ +.\" +.\" Copyright 1987 by the Massachusetts Institute of Technology +.\" All rights reserved. The file /usr/include/zephyr/mit-copyright.h +.\" specifies the terms and conditions for redistribution. +.\" +.TH ZEPHYRD 8 "July 1, 1988" "MIT Project Athena" +.ds ]W MIT Project Athena +.SH NAME +zephyrd \- Zephyr server daemon +.SH SYNOPSIS +.I @sbindir@/zephyrd +[ +.BI \-d +] +.SH DESCRIPTION +.I zephyrd +is the central server for the Zephyr Notification System. +It maintains a location database of all currently logged-in users, and a +subscription database for each user's Zephyr clients. +.PP +.I zephyrd +communicates with daemons running on other Zephyr server hosts, to +provide a reliable service. +.PP +While running, any unusual conditions are recorded via +.I syslog(3) +to facility local6 at various levels. +The +.BI \-d +option enables logging of additional debugging information. +.PP +When a +.B zephyrd +is executed, it requests a list of server machines from Hesiod and +initializes its state from any +\fIzephyrd\fRs executing on the other known servers. This initialization +is only performed after the \fIzephyrd\fRs have authenticated themselves +to each other via Kerberos. +The server then enters a dispatch loop, servicing requests from clients and +other servers. +.SH SIGNALS +.B SIGUSR1 +enables logging of additional debugging information. +.br +.B SIGUSR2 +disables the logging of additional debugging information. +.br +.B SIGHUP +causes +.I zephyrd +to re-read the default subscription file and to re-query Hesiod about +valid peers. Any peers which are not responding and no longer +mentioned in Hesiod are flushed; any peers not previously named by +Hesiod are added. +.br +.B SIGINT \fRand\fB SIGTERM +cause +.I zephyrd +to gracefully shut down. +.br +.B SIGFPE +causes +.I zephyrd +to dump the location and subscription databases to +.I /var/tmp/zephyr.db +in an ASCII format. +.SH ACCESS CONTROL +Certain notice classes are restricted by the Zephyr server. Each such +class has access control lists enumerating who may transmit (xmt-*.acl) or +subscribe to that particular class. Subscriptions may be +restricted either absolutely (sub-*.acl files), or by instance restrictions. +iws-*.acl files control subscriptions to wildcarded instances. +iui-*.acl files control subscriptions to instances which are not the +Kerberos principal identity of the subscriber. +If an access control list of a given type is absent, there is no +restriction of that type on the class, except that any notices of the +class must be authenticated. +The class registry lists all classes which are restricted. +.SH FILES +.TP 10 +.I @sysconfdir@/zephyr/acl/class-registry.acl: +List of classes which are restricted +.TP +.I @sysconfdir@/zephyr/acl/iws-*.acl: +Access Control Lists for instance-wildcard restrictions +.TP +.I @sysconfdir@/zephyr/acl/iui-*.acl: +Access Control Lists for instance-identity restrictions +.TP +.I @sysconfdir@/zephyr/acl/sub-*.acl: +Access Control Lists for subscribing +.TP +.I @sysconfdir@/zephyr/acl/xmt-*.acl: +Access Control Lists for transmitting +.TP +.I @sysconfdir@/zephyr/srvtab: +Kerberos 4 Service keys +.TP +.I @sysconfdir@/zephyr/krb5.keytab: +Kerberos V Service keys +.TP +.I /var/run/zephyrd.tkt4: +Current Kerberos 4 tickets for exchange with other servers +.TP +.I /var/run/zephyrd.tkt: +Current Kerberos 5 tickets for exchange with other servers +.TP +.I /var/tmp/zephyr.db: +File containing an ASCII dump of the database. +.SH BUGS +The current implementation of the Zephyr server (\fIzephyrd(8)\fR) makes +no distinction between realm-announced, net-visible and net-announced +exposure levels. +.SH SEE ALSO +zephyr(1), zhm(8), kerberosintro(1), hesiod(3), access_control_lists(?), +syslog(3) +.br +Athena Technical Plan, Sections E.4.1 (Zephyr Notification Service) and +E.2.1 (Kerberos Authentication and Authorization System) +.SH AUTHOR +.PP +John T. Kohl, MIT Project Athena and Digital Equipment Corporation +.SH RESTRICTIONS +Copyright (c) 1987,1988 by the Massachusetts Institute of Technology. +All Rights Reserved. +.br +.I zephyr(1) +specifies the terms and conditions for redistribution. |