I am replacing a home network - Windows Server 2003 and 5 PCs (XP Pro) with UBUNTU 10.4 LTS Server and client versions. I am keeping a couple of the PCs with dual boot until I can migrate everything over (Having some issues with iTunes, Family Tree Maker, Media serving, DVD decrypt and a couple of others, but that is for another post). It was great fun getting the server up and running using only shell commands. Took me ages just to get a folder shared! Migrating the data over from NTFS to ext3 was also fun given the limited space on the partitions.
I really only want to use the server for communal network type things ... central user account maintenance, shared folders for music, video etc and data backup. I don't need it to be performing server functions on the Internet e.g. web server etc although that may come later. How I set up central user management? All the PCs are currently setup with local user ids, and it is a bit of a pain to go round each PC every time I change something.
The server is not always up, so I need to be able to log into the local PC without it being active. I was using Active Directory on Server 2003, but I don't need anything that complex really ... just 3 or 4 users to manage. I have been looking at the setup tutorial at [URL] but am not sure how relevant a lot of it is. I have SSH setup so I can login remotely, NFS is working to share the folders, but that is about all I have done so far.
I have received a task to install Dell's KACE patch management agents (kboxagent) on a large number of 11.2 and 11.4 openSuSE systems in our organization A search of the forum did not find any references for KACE. Has anyone had any expierence with the KACE product on openSuSE?Google searches only find ver 5.1 of KACE for RH systems. Is this version compatible with all Linux's?
I've setup Kerberos and OpenLDAP servers (9.10) similar to the official documentation (and other sites that fill in the "gaps"). However, when you start to get in to some of the details, there seem to be many options - and I guess I'm looking for what could be the defacto standard. I'd like to allow Ubuntu clients to have a sso capability, with the ability for local caching of passwords if not connected to the network (such as a laptop user away from the office, prior to a VPN). I'd like to automount a secure NFS share somewhere in the /home directory. If the user logs in to a computer they've not logged in to before (if they're authorized), it would be nice if a skeleton /home directory could be setup there automatically I'm guessing that it is not desirable to use a shared /home NFS - as if you're off the network this would be problematic - as well as multiple computers sharing the same /home. There are some benefits to a shared /home (SSH certs, etc.), so maybe there is a hybrid approach out there.
I've read that it's not necessarily good practice to have OpenLDAP to do the authentication (leave this to Kerberos), but it's fine for authorization (such as ACLs for logins to certain computers). It's also good practice to use TLS with OpenLDAP (which requires public certs on all the clients) and to not allow anonymous read to the directory. I would guess that a computer host keytab could be refreshed to bind to the OpenLDAP server via GSSAPI / SASL to allow a non-anonymous read, and then determine if, say, the user was a member of a group allowed to log in. Kerberos would then pick up and authenticate the user and then proceed to the login. Off the network here, I'm not sure. I found this document, but it's self declared missing items: [URL]
I'll stop the rambling, but I cannot be the only one who would like to setup a relatively standard and secure server based network authentication and authorization back-end. Is there any _complete_ documentation on the best practices and how to implement?
I've a friend who would like to install openSUSE 11.3. But due to a bad Internet connectivity he cannot download the updates and the extra softwares. So I was thinking if it was possible to create a patch and a software cd for him which could then be used as a repository in YaST ?
I'm at ES5. Anyone have a method for roll out or backing a single RPM or set of RPMs. In other words, I install the security errata (several packages) and it breaks something. I need to back it out, and restore the original. Also, anyone have experience using Red Hat provisioning for patch management?
How do we perform offline patch management with Debian? This isn't a question about which tools to use on Debian to load the patch once it is on a CD and transferred to said offline computer via sneaker net. More, how do I keep said offline (or strictly firewalled) computer in synch?
Pardon me while I make a comparison to Solaris. I am in no way stating Solaris is better. It just happens to be my baseline of experience.In Solaris, I can download Cluster Patch Updates (CPU). So if I build a Solaris box with a CD that is a year or more old, I can download the latest CPU and get the box patched up to date, and from that point on sneaker-net patches as they appear.
I've inherited the following Virtual Machine scenario and am new to Linux Administration and Patch Management. The Host Operating System is Windows 2003 Enterprise, which has VMware Server 2.0.2 installed. Under the VMware Server 2.0.2 I have a Ubuntu 32-bit OS web server running Apache2 Web Services. When I log onto the Ubuntu server (9.10 32-bit) I see the following two lines just above the new mail/last logon lines.
85 packages can be updated 55 updates are security updates
I would like to see at least a summary of each update and its urgency so I can notify the various developers/server owners to get their input regarding whether we should or should not apply that particular update to the server. We apply the patches in our test/dev environment first then once vetted there we roll them out to our production servers. What I am looking for is a way to automate the gathering of the information and once approval has been received automating the actual patching process so that I do not have to manually perform the apt-get process for each separate package needed/approved.
Ideally I would like a recommendation for a GUI based package to manage this process and that is capable of generating the appropriate reports for the 'powers that be' regarding the current security/patch management environment. For proof of concept I would like a free version that is not hamstrung in functionality but is not too costly to procure the production version with no limitations.
I am running 6 servers on RHEL4.4 with oracle databases and application on HP ML370 hardware. Since initial installation, I have not applied any patch updates. I would like to start practising Patch Management and would like to know how to start and how to do it. For security reasons, I am not allowed to connect the servers to RHN or RHS hence will appreciate other options of acquiring patch updates in bundled form say on a monthly basis.
I tried connect to internet through iPhone (bluetooth tether), so I followed one tutorial... It said I have to change "networkmanager" to "ifup" in yast>network settings, and make some other changes... I did it, but I couldn't connect via iphone... OK... I put back all changes, also changed ifpu to networkmanager.
After reboot, Knetowrkmanager gives me "network management disabled" on startup, instead of list of my networks.
Of course, I google for solution, but without any luck. And then, I don't know why, I killed Knetworkmanager, start it again, and.. it worked!
But now, I have to kill it, and start again always, when I reboot my laptop...(HP Compaq 6720s, BCM4312, KDE 4.3.4)
I have an Asus EeePc 1001PX and on resume I have "Network Management disabled", neither wired nor wireless interface can be configured, the NM icon is greyed out. running ifconfig shows eth0 and wlan0 have disappeared completely.
I found 2 options: 1. https://bugs.launchpad.net/ubuntu/+bug/555571 2. Network management disabled after start on 11.2 - openSUSE Forums
but I don't have the /var/lib/NetworkManager folder at all
Why does this happen? I am (this time) trying to install Atmel's gnu-avr toolchain. Atmel's web site gives the repository as http:www.atmel.no/avr32/suse/11.0/i586. I put that into YAST2's repository manager, and it comes back with "unable to create repository from URL..."
Why does this happen? It's hardly unique to the Atmel repository: in fact, it seems to be YAST's default behavior on ANYTHING other than the official SUSE repos.
Is there some way to fix this, or bypass it with some other installation tool, so I can get the software I need?
I have a small installation problem with openSUSE 11.2 I have read the relevant stuff in the forums for new users. I have downloaded openSUSE-11.2-DVD-i586-iso and verified the file using MD5. I am currently running windows XP (SP1) on a Fujitsu Siemens V1000 laptop andI am trying to install linux from my hard drive and not from a DVD drive.
The path to the downloaded file on my windows partition is: e:/OpenSuse/openSUSE-11.2-DVD-i586.iso I have initialised installation and selected sda6 as the partition where the sourcefile is located. and when prompted for the directory, I typed " /OpenSuse/openSUSE-11.2DVD-i586.iso " The installations then proceeded through to "Initialising Package Manager" upon which I get the following message:
" Unable to create repository from url' iso:/? iso=openSUSE-11.2-DVD-i586.iso&url=hd:/OpenSuse?device=/dev/sda6"
DETAILS: Failed to mount iso:///?iso=openSUSE-11.2-DVD-i586.iso & url=hd:/OpenSuse?device=dev/sda6 on: Unable to find iso filename on source media.
History: - File:/openSUSE-11.2-DVD-i586.iso not found on medium 'hd:///OpenSuse?device=dev/sda6'
There is an option to try again at which point an additional dialog box appears and I have the opportunity to change things. Other than that, the only option is to cancel and terminate the installation. I've tried the process around 3 times, but if I'm doing the same thing then not surprising I'm getting the same result.
I am trying to add a few additional repositories to SLES 11 64-bit but I can't seem to get them added. I am trying to add Index of /repositories/server:/database but I get the error "Unable to create repository from [URL]... Try again? So I browsed that repository and then tried to add Index of /repositories/server:/database/SLE_11 but still got the error message with this new URL listed instead. I tried just the 11.2 repository and it worked - Index of /distribution/11.2/repo/oss/suse.
How or what do I need to do in order to get Index of /repositories/server:/database added to my repository?
I have written a script which builds a repository into a website document root and it seems to work OK apart from one little problem other servers which use that repository have set it to autorefresh, but they don't, I have to manually execute "zypper refs".how yast2 knows that a repository is out of date?
I just changed my power settings so that my laptop would hibernate when I closed the lid... but now KDE Network Manager has decided that it will not allow itself to be enabled. I can get my ethernet connection working through YAST... but I *really* need the wireless to work as well... so can somebody *please* tell me why KNM is being so stupid, and how I can fix it? EDIT: I just realized that I should have put this in the Network subforum...
I just switched to opensuse from fedora. So far, I like it a lot (KDE FTW). However, I am having a couple issues concerning hibernation and restarting.Whenever I merely close my computer but don't shut it off, I am forced to reboot. When I open the computer after closing it, everything stays black and nothing seems to work aside from a restart (no good, I know).When I restart, network management is disabled and thus I am prevented from accessing wireless. The only solution I have found is to hibernate, which for some reason fixes the problem. A restart however does nothing. So I guess I have two questions:1) Why can't I close my computer without turning it off?2) Is there a more permanent solution aside from merely hibernating after a crash that will fix network manager
I setup a server with vmware esxi 4. I installed opensuse 11.2 and I have successfully setup an internet gateway and I manually configured (static) my client IP. My question is, is there any software or commands that I could use to manage the bandwidth usage for each client? eg. only 5Mbps for 192.168.1.5, 10Mbps for 192.168.1.10, etc
Many software available for patch managment like OCSinventry, cfengine,puppet,redhat satellite server for linux. I want to perform patch management for my Linux server (centOS, debian) My question is how to find out which patches available for Linux and which patches i need to apply. Is there any way to find out require patches?
I'm trying to install a patch but when I copy it into terminal I get message " /home/john/patch-modules_v62-opensuse.sh 'vmware-7.1.3-2.6.37-rc5.patch' not found. copy it to the current '/home/john' directory. Exiting" But I have it in my home directory!