Davor Ocelic <[EMAIL PROTECTED]> wrote: > Great, here's the list of my tasks and status: > > - OpenAFS: done
I'll volunteer to have my home directory moved/copied into AFS for further testing. The AFS servers will allow contact from the outside world, correct? > - log parser/monitor > - rewrite of Debian's adduser package to support > krb/ldap/afs. (This is primary, and I'm well on > the way with it). I'd also suggest a way for users to create Kerberos passwords, perhaps by having a setuid root (or other user) program read a password from ~/.k5pass or something like that (which should only be used until users no longer have non-AFS home diretories.) You should also create a PTS group and user for the webserver so that users can ACL web stuff to it to allow websites to continue to work. system:anyuser will likely work for most things, but any database passwords and the like should be restricted to the webserver. <<CDC -- Christopher D. Clausen _______________________________________________ HCoop-SysAdmin mailing list [email protected] http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin
