Mmmph - I have a couple hundred to keep track of - I use gpasman, and keep the.gpasman file in an encfs encrypted directory (symlinked back to.gpasman in my home directory).
Seems reasonably secure.
Multicast is indeed the best solution unless the network is fully or highly meshed. Ideally, rsync like behavior over multicast (either bandwidth controlled or in the network quiet times) would be my choice.
Slashdot Mirror
Mmmph - I have a couple hundred to keep track of - I use gpasman, and keep the .gpasman file in an encfs encrypted directory (symlinked back to .gpasman in my home directory).
Seems reasonably secure.
Multicast is indeed the best solution unless the network is fully or highly meshed. Ideally, rsync like behavior over multicast (either bandwidth controlled or in the network quiet times) would be my choice.
Interesting that none of their recommendations include developing better software than OSS.