On Tue, 20 Feb 2007 17:34:55 -0800 Adam Chlipala <[EMAIL PROTECTED]> wrote:
> Davor Ocelic wrote: > > 1) Adam, what did you have in mind for the firewall? We copy the > > existing thing? > > > > Hey, I'm not an admin for the new machines; it's up to people who are. > :P I like what we have on fyodor, though, and would be quite happy to > keep using that set-up on the machines where members can log in. A much > simpler firewall should suffice on deleuze, if we use one there at all. Ok. > > 2) Do any of you have good suggestions for the maintenance of > > cron privileges, etc? > > > > Obviously, the problem is, such things are kept in local files. > > (they're not part of libc functions so they can't be in ldap). > > > > This means we would have to edit files on each machine > > for each user. This is ok for the moment when it's only > > Mire, but will get trickier when Abulafia and more hosts join in. > > > > You're talking about the constant-factor overhead of connecting to the > appropriate machine and editing the appropriate file? It's a feature, > not a bug, to have different cron privileges for different machines, so > I can't see doing significantly better. No, the ldap thing wouldn't eliminate the per-machine settings. It would just make all editing centralized. Fire up a GUI ldap client, clikety-klick here and there, and everything propagates automatically. _______________________________________________ HCoop-SysAdmin mailing list [email protected] http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin
