Re: [OpenAFS] Zabbix monitoring AFS health

Back when I ran a cell that people other than me cared about, I had implemented various checks from: https://www.eyrie.org/~eagle/software/afs-monitor/ I do not know anything about Zabbix, but I assume it is possible to take these nagios checks and make them work? < Hello, I started to imple

Re: [OpenAFS] Why the KfW/Heidmdal dependency with OpenAFS for Windows?

The Microsoft libraries are only useful if one is actually using the Windows Kerberos parts (either through Active Directory or ksetup.exe with a realm.) For your standard home user, they aren't going to be using either and need a way to enter Kerberos credentials from within Windows itself.

Re: [OpenAFS] Proposed changes for server log rotation

Russ Allbery wrote: "Christopher D. Clausen" writes: Russ Allbery wrote: Yeah, this is a very good point. I think I've used bos getlog maybe three times in the past fifteen years, so I never think about it, but I suspect others use it more than I do. I'd say that y

Re: [OpenAFS] Proposed changes - restricted mode

Michael Meffie wrote: Simon Wilkinson wrote: On 5 Dec 2010, at 02:55, Derrick Brashear wrote: We tell you that you can, and how, to disable this Perhaps we should ship with it disabled by default? Yes, I agree, bos exec really should disabled by default, and only turned on after people u

Re: [OpenAFS] Re: Proposed changes for server log rotation

I was just wondering if anyone thought about these same logging changes on the Windows platform too. I know the servers aren't really supported right now on Windows, but I wouldn't want to go in a direction that makes it extereme hard to share code between platforms for logging... Or does tha

Re: [OpenAFS] Proposed changes for server log rotation

Russ Allbery wrote: Jeffrey Altman writes: My one concern to switching to something like syslog by default is that "bos getlog" will need to be re-implemented in a different fashion. Yeah, this is a very good point. I think I've used bos getlog maybe three times in the past fifteen years,

Re: [OpenAFS] pts createuser -name hostname.domain ?

As an FYI, I usually just create a group name that is similar to the hostname, then add the IP user to the group and use the group in ACLs. Of course, if you actually make a lot of DNS changes you'll need to keep these in sync, but it shouldn't be that hard to write a quick script to audit / ch

Re: [OpenAFS] AlwaysAttach

Russ Allbery wrote: Jason Edgecombe writes: Would it be terribly difficult to add an informational message to the fileserver to mention this? I took a look, but the code is structured in a really obnoxious way that makes it hard to do this. It needs substantial restructuring so that it's a

Re: [OpenAFS] Testing OpenAFS with Windows XP Roaming Profiles....

Claudio Prono wrote: I am testing a solution like: OpenAFS with kerberos, Windows XP with Integrated logon and roaming profile. OpenAFS works, Kerberos works, integrated logon works... The profile on AFS not. I have manually copied the profile in a directory on AFS like "msprofile", edited the

Re: [OpenAFS] -hr option to fileserver, IP address-based ACL delay

Jeff Blaine wrote: We'd like IP address-based ACLs to go live sooner than they do by default. -hr Specifies how often the File Server refreshes its knowledge of the machines that belong to protection groups (refreshes the host CPSs for machines). The File Server must update this inf

Re: [OpenAFS] Re: [OpenAFS-devel] 1.6 and post-1.6 OpenAFS branch management and schedule

Russ Allbery wrote: "Chas Williams (CONTRACTOR)" writes: Russ Allbery writes: I definitely agree that this is where we should go. I don't think we're quite ready to be there right now, unless you feel that we should enable supergroups by default. :) (I can't reasonably turn it off in the D

Re: [OpenAFS] Re: [OpenAFS-devel] 1.6 and post-1.6 OpenAFS branch management and schedule

Simon Wilkinson wrote: On 17 Jun 2010, at 19:45, Christopher D. Clausen wrote: Its fine to not have it enabled by default, but I can't see why one would remove the functionality from the source tree. Because every different configuration option you have doubles the complexity of testin

Re: [OpenAFS] Re: [OpenAFS-devel] 1.6 and post-1.6 OpenAFS branch management and schedule

Russ Allbery wrote: Chris, to check, are you currently using --enable-fast-restart or --enable-bitmap-later? Yes, both of them. Please understand that neither of those options are recommended now, whether you have DAFS enabled or not. I consider --enable-fast-restart in particular to be dan

Re: [OpenAFS] Re: [OpenAFS-devel] 1.6 and post-1.6 OpenAFS branch management and schedule

Rainer Toebbicke wrote: Derrick Brashear schrieb: Considering it a showstopper when you admit one graph earlier that you're already running with a patched tree seems a bit overblown, perhaps? The tree is now gold and patches may no longer be applied? No, of course not. It would be painful to

Re: [OpenAFS] forcing coredumpsize in bosserver

Derrick Brashear wrote: Folks, I submitted a patch which would use the fact that bosserver runs as root to override resource limits and always drop a core. The issue it's intended to address is that often people will start bosserver from contaminated environments (where coredumpsize is limited)

Re: [OpenAFS] Purging the client cache

Russ Allbery wrote: We're starting a project to provide a set of AFS servers and a file space with additional security restrictions around who can access it so that it's suitable for storing data subject to various regulatory requirements. This space will require using either strong TLS or a VPN

Re: [OpenAFS] Re: Ideas for finer grain set acl controls

Alf Wachsmann wrote: On Thu, 12 Nov 2009, Russ Allbery wrote: Andrew Deason writes: In other words: *** PLEASE SPEAK UP *** if you want to be able to prevent normal users from doing something like "fs setacl ${HOME} system:authuser rlidwka" even when they have the 'a' bit on ${HOME}. Even

Re: [OpenAFS] The removal of afscreds.exe and afs_config.exe on Windows Vista and Windows 7: Seeking Opinions

David Bear wrote: The only other thing I miss from afscreds is the version number for afs. I don't see where this is easily available -- elsewhere, not even in the control panel applet. Just run fs -version from a command prompt: Win+R cmd -> fs -version C:\>fs -version OpenAFS_1.5.6101 C:\

Re: [OpenAFS] The removal of afscreds.exe and afs_config.exe on Windows Vista and Windows 7: Seeking Opinions

David Boyes wrote: 1. afscreds simply doesn't work reliably. as a result, its continued use is in my opinion not an option on Vista, 2008 and Windows 7. Valid point, but it seems a bit precipitous to remove it before a replacement with equivalent function is available. Clearly it works for

Re: [OpenAFS] Openafs on Ubuntu

Jason Edgecombe wrote: gottoomanyaccounts wrote: I am wondering is there a plan to have an official repository for Ubuntu, like the one we have for Fedora/RHEL? It would be nice to be able to install the openafs client on Ubuntu as easily as on Fedora. Um... I'm running ubuntu with the openaf

Re: [OpenAFS] Re: Thinking about a different way to distribute configuration.

Russ Allbery wrote: David Boyes writes: Why? If the data it serves is on a SAN or otherwise connectable storage, why should the physical server handling the information be somehow special if it gets the same address and configuration information? [snip] I want to use my configuration managem

Re: [OpenAFS] OpenAFS + Active Directory documentation

Josh Fiske wrote: I've been doing alot of research recently... We have an old (circa 2003) AFS cell and are looking at replacing those aging servers. For our new implementation, I hope to (read as: "have received an edict that we must...") be able to use Active Directory as the authentication

Re: [OpenAFS] Best Filesystem

Jason C. Wells wrote: Dirk Heinrichs wrote: So your server OS is Solaris No. My server OS is debian. My client OS are FreeBSD, debian, XP. Your assumption that file system suitability is determined purely by OS is limited. ZFS appears to ready for prime time on BSD and Linux or it will be

Re: [OpenAFS] adding a repository for yum on centos

David Bear wrote: Unless, there is a different file I would use to add the repository. I don't see that these are rpms themselves and thus cannot be added via rpm -Uhv http:... Do these represent configuration added to /etc/yum/repos.d ??? http://www.openafs.org/dl/openafs/1.4.10/openafs-rep

Re: [OpenAFS] openafs and tivoli backup client

Russ Allbery wrote: "Christopher D. Clausen" writes: Russ Allbery wrote: Not any more. Tivoli dropped support for AFS. We have old binaries that we're still using because they've not broken the API (yet), but I don't think we're allowed to give them out, and

Re: [OpenAFS] openafs and tivoli backup client

Russ Allbery wrote: Vladimir Konrad writes: Do you know a way to persuade IBM Tivoli client to do backup of openafs file-system? Not any more. Tivoli dropped support for AFS. We have old binaries that we're still using because they've not broken the API (yet), but I don't think we're allow

Re: [OpenAFS] windows list permission confusion

Sean O'Malley wrote: Our users are getting confused with the 'list' permission and the Windows client. The Windows afs client -will- show 0k files if you have the list permission, but in the Windows Explorer "properties get/show change permissions" box thing, they see that it is set to read-only

Re: [OpenAFS] Only db server host can log into a "remote" fileserver volume

John Betts wrote: I am having trouble accessing a particular volume hosted by a stand- alone OpenAFS fileserver, from any client other than the one running on the DB Server Host. (_including_ the client running on the file server hosting the volume in question). host1 - DB Server + File Server

Re: [OpenAFS] encrypted volumes

Jason Edgecombe wrote: Why not just use a truecrypt to mount a file from an AFS volume as an encrypted volume? I've found that mounting anything (even ISOs on loopback) out of AFS causes serious system hangs and/or crashes.

Re: [OpenAFS] some afs clients are unreachable afs servers from time to time.

Derrick Brashear wrote: On Sat, Jan 17, 2009 at 8:59 PM, TIARA System Man wrote: thank you.. : ) but, i have further questions. if you could tell me more, it will be appreciated. there should be the reason afs programmers let server restart at sunday 4am by default. if i turn it off, will se

Re: [OpenAFS] OpenAFS 1.5.56 and Vista Home Premium 64bit SP1

According to the subject, you are on 64-bit Vista and the below refers to the 32 bit installer, which is likely the problem. < wrote: OK thanks a lot. I had to use 7-zip to extract the contents because the cmd line you sent keep giving me errors. Jeffrey Altman-2 wrote: You can extract the

Re: [OpenAFS] Problem with OpenAFS on Vista x86

Paul Accisano wrote: Jeffrey Altman wrote: Paul Accisano wrote: Finally, here's an extremely telling bit of information: not only do I lose access to \\afs when I connect to VPN, but I also lose access to all other comptuers on my network except the only other one that's running Vista. What's

Re: [OpenAFS] Weird conflict between openafs kernel module and nvidia driver on Ubuntu

Karl M. Davis <[EMAIL PROTECTED]> wrote: As part of my standard setup, I've been editing /etc/openafs/afs.conf: << ... #OPTIONS=AUTOMATIC OPTIONS="-chunksize 20 -memcache -blocks 65536" Is that not legit? Can't recall where I was told to do that, but I'm guessing it was likely someone in the

Re: [OpenAFS] Fileserver doesn't recognise host-principals

Douglas E. Engert <[EMAIL PROTECTED]> wrote: > Frank Burkhardt wrote: >> Hi, >> >> I've got a strange problem here. Some of my AFS-client-machines must >> put some stuff into AFS on a regular basis. Since all of them have >> a host/...-Keytab, I wanted to use it as AFS-identity: >> [snip] >> Howeve

Re: [OpenAFS] OpenAFS in a static kernel build

Russ Allbery <[EMAIL PROTECTED]> wrote: > Has anyone built OpenAFS statically into a Linux kernel with a recent > code base? Someone posted code in RT for openafs 1.4.4 that does this for web hosting places that do not allow kernel modules but will allow customers to provide a kernel binary or s

Re: [OpenAFS] OpenAFS/Kerberos Windows client

Karen L Eldredge <[EMAIL PROTECTED]> wrote: > I'm not real familiar with Windows, because I mostly work on AIX or > Linux. AIX and Linux have the tool k5start that can be used to run > scheduled (cron) jobs by accessing the principal's password via a > keytab file. Is there something similar for W

Re: [OpenAFS] Win2K AFS server, mirror data+config to RHEL4.5 new Server?

Jeffrey Altman <[EMAIL PROTECTED]> wrote: > avison48 wrote: >> Our KDC is a Windows server managed by someone else who wants to >> upgrade it, which will probably break krb to the Win2K AFS server. > > Why do you believe this to be true? An upgrade of Active Directory from Windows 2000 to Windows

Re: [OpenAFS] windows download links broken

I think he meant: The installers are all located at /afs/openafs.org/software/openafs/1.5.51/winxp/ The path without the ".org" did not work for me. < wrote: > The windows.html has been fixed. > The 1.5.51 release page was not broken > Fixing the download URL would have been obvious if you had l

Re: [OpenAFS] when openafs becomes a windows IFS

Jeffrey Altman <[EMAIL PROTECTED]> wrote: > A symlink is not an object that Windows knows how to describe. > It is reported to Windows as a directory if it points to a > directory and as a file if it points to a file. The behavior you > are seeing is the behavior that Windows provides when you del

Re: [OpenAFS] inode to namei process

anne salemme <[EMAIL PROTECTED]> wrote: > if the goal is to make a copy of a quiescent RW volume, you could do a > 'vos dump' of the .backup volume, piped to a 'vos restore'. > > as in 'vos dump volume.whatever.backup' | 'vos restore > volume.newname' > using appropriate arguments. > > if the goa

Re: [OpenAFS] Solaris 10 crashing - BAD TRAP ... NULL pointer dereference

Jeff Blaine <[EMAIL PROTECTED]> wrote: > We're having this exact same problem that was never replied > to publicly in 2006: > > http://www.openafs.org/pipermail/openafs-devel/2006-July/014073.html > OpenAFS 1.4.7 (and older revs too) with libafs64.o under > Solaris 10 (old version and also fully p

[OpenAFS] Re: [OpenAFS-devel] Compiling source in Debian (Ubuntu)

Vishal Powar <[EMAIL PROTECTED]> wrote: > I am having some trouble in compiling the sources of (1.4.7) on > ubuntu. I have an existing cell made up of two machines. One acting as > the KDC,dbserver 'kerbserver' and other as a fileserver 'server1', I > have installed this according to the document '

Re: [OpenAFS] kerberos 5 and afs server

Brandon S. Allbery KF8NH <[EMAIL PROTECTED]> wrote: > On 2008 May 22, at 7:31, Lara Lloret Iglesias wrote: >> I installed a kerberos server in both machines, but maybe I just >> have to install it in one of the machines and copy somehow the >> configuration to the other servers...I don't know what

[OpenAFS] Re: OpenAFS 1.5

Russ Allbery <[EMAIL PROTECTED]> wrote: > Steve Simmons <[EMAIL PROTECTED]> writes: >> On May 26, 2008, at 3:48 PM, Russ Allbery wrote: >>> . . . Plus, a stable demand-attach is a good milestone for >>> releasing 1.5 . . . >> That said, do we have a milestone list for 1.5 becoming 1.6? > > At this

Re: [OpenAFS] vos listaddr problem?

Lars Schimmer <[EMAIL PROTECTED]> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Hi! > > While trying to get the afsss.pl script to run I found a glitch with > vos listaddr. > > As done via help from the #openafs chat I managed to get my cell back > to run with vos syncvldb (all files

Re: [OpenAFS] Getting Tickets but not Tokens

Jason C. Wells <[EMAIL PROTECTED]> wrote: > I am able to get an krb5 ticket for afs, but for some strange reason > aklog won't get a token for me. > > I use heimdal on FreeBSD 6.3 and openafs 1.2.8 on Redhat 8. I am not > running a kaserver. > > From the command line: > > [EMAIL PROTECTED] stradamo

Re: [OpenAFS] Newbie Question

Gary Bowling <[EMAIL PROTECTED]> wrote: > klog admin > Password: > Unable to authenticate to AFS because Authentication Server was > unavailable. I'm pretty sure you aren't using kaserver and as such klog won't work (without a ka-forwarder or aother such service running.) You want to use aklog

Re: [OpenAFS] Newbie Question

Gary Bowling <[EMAIL PROTECTED]> wrote: > Ok, after being side tracked by real work for an hour or so I'm back > to looking at this. Here are some answers to a few of the responses. > > Lars - Thanks, I had no idea DNS needed anything. I have everything in > /etc/hosts right now. Will that work or

Re: [OpenAFS] maildir on openafs

David Bear <[EMAIL PROTECTED]> wrote: > I seem to distantly recall some discussion about storing maildir > directories on openafs, but I don't remember if it was safe, > discouraged, or otherwise problematic. Any one see problems with > putting maildir in afs? I've delivered email directly into AF

Re: [OpenAFS] Speed difference between OpenAFS 1.4.x on Debian and CentOS

Wesley Chow <[EMAIL PROTECTED]> wrote: >> Does turning crypt off mean data in transit can be read *and* >> tampered with? Or read, but still safe from tampering? > > Also, does this imply that a server participating in the public > directory is trusting that all clients are using encryption to conn

Re: [OpenAFS] Speed difference between OpenAFS 1.4.x on Debian and CentOS

Jeffrey Altman <[EMAIL PROTECTED]> wrote: > Christopher D. Clausen wrote: >> I think the better question is why CentOS has it _OFF_ by default. >> Packages should "fail safe" by being in the safest operating mode by >> default. > > Agreed but then yo

Re: [OpenAFS] Speed difference between OpenAFS 1.4.x on Debian and CentOS

Jeffrey Altman <[EMAIL PROTECTED]> wrote: > MichaÅ, Droździewicz wrote: >> Is AFS_CRYPT really that needed that debian is turning this _ON_ by >> default? > > One of the benefits that AFS provides over other file systems > is privacy. For that you need crypt to be on. > > The Windows client defau

Re: [OpenAFS] kstart for windows ?

Hans Melgers <[EMAIL PROTECTED]> wrote: > I was wondering if there are ways to make a windows machine get tokens > automatically, similar to Russ's kstart utility for *nix? Or am i > missing a cool feature in MIT KfW ? > I need it for a win server to sync some files to afs every night. > Anybody h

Re: [OpenAFS] best practice for salvage

Chas Williams (CONTRACTOR) <[EMAIL PROTECTED]> wrote: > In message <[EMAIL PROTECTED]>,Robert > Banz write s: >> What makes you think running salvage is a good thing? I had gotten to >> the point where I would avoid running it like the plague -- using > > running salvage once in a while is a good w

Re: [OpenAFS] OpenAFS and SELinux?

Jason Edgecombe <[EMAIL PROTECTED]> wrote: > Joshua Hutchins wrote: >> Harald Barth wrote: I'm concerned that a hacked mail server could lead to compromise of the server key, which would then compromise the entire cluster. >>> >>> I know that there are folks out there which deliver email

Re: [OpenAFS] will OpenAFS serve my needs?

F. Even <[EMAIL PROTECTED]> wrote: > On Sun, Mar 30, 2008 at 4:15 PM, Christopher D. Clausen > <[EMAIL PROTECTED]> wrote: >> Some sites actually still use a TSM client for native AFS backups. >> The older TSM 5.1r17 or 5.1r18 client still supports AFS "buta&quo

Re: [OpenAFS] will OpenAFS serve my needs?

F. Even <[EMAIL PROTECTED]> wrote: > On Sun, Mar 30, 2008 at 2:09 PM, Russ Allbery <[EMAIL PROTECTED]> > wrote: >> "F. Even" <[EMAIL PROTECTED]> writes: >> >> > So...I guess another question then (that everyone probably dreads >> as > it's usually meaningless to real support of a product, but it

Re: [OpenAFS] vos syncserv and vos syncvldb

Steven Jenkins <[EMAIL PROTECTED]> wrote: > On Sun, Mar 23, 2008 at 1:58 PM, Christopher D. Clausen > <[EMAIL PROTECTED]> wrote: >> I was trying to help someone on #openafs yesterday with a hosed vldb >> due to an AFS server being initial setup on "localhost

[OpenAFS] vos syncserv and vos syncvldb

I was trying to help someone on #openafs yesterday with a hosed vldb due to an AFS server being initial setup on "localhost." Once we determined that was indeed the problem (which was not easy in and of itself) and corrected, attempts were made to fix the vldb by using vos syncvldb and vos syn

Re: [OpenAFS] Public Cell as Sandbox

Fred Bartlett <[EMAIL PROTECTED]> wrote: > I am new to AFS and just wanted to try using the client without > having to setup a full cell. Is there any public cell out there where > I can get some type of Guest account just to try it out on? Thanks You can get a cheap account at http://hcoop.net/ T

Re: [OpenAFS] New to OpenAFS

billbaird3 <[EMAIL PROTECTED]> wrote: > I'm new to OpenAFS and was hoping if the community could help me > determine if it would be a good fit for my company. We are approx 150 > people, with 50 home users and the rest in small offices of about > 10-15 people. I would like to have a main file serve

Re: [OpenAFS] perpetual Connection timed out

Wesley Chow <[EMAIL PROTECTED]> wrote: > Mike Garrison wrote: >> >> On Mar 19, 2008, at 12:26 PM, Wesley Chow wrote: >>> >>> On a few of our clients (running 1.4.1), we sometimes get >>> "Connection timed out" with a single volume. Other volumes on the >>> same server are >> >> 1.4.1 is almost 2 ye

Re: [OpenAFS] groups in groups, ptsviewers etc...

Anders Magnusson <[EMAIL PROTECTED]> wrote: > What I am thinking on is letting people give access to groups that > they are not member of. > For example to let a teacher give and take rights for courses he > gives; we have about 20k > of (auto-generated) student groups so it's good to be able to li

Re: [OpenAFS] groups in groups, ptsviewers etc...

Anders Magnusson <[EMAIL PROTECTED]> wrote: > Marcus Watts wrote: >>> Also, for people to be able to see what's in the protection >>> database, they must obviously be members >>> of the (undocumented?) ptsviewers group. Is it safe just to add all >>> people to this group or are there other >>> impl

Re: [OpenAFS] OpenAFS on windows - profile in AFS, who uses it?

Stephen Joyce <[EMAIL PROTECTED]> wrote: > On Sun, 10 Feb 2008, Rodney M. Dyer wrote: >> 2. A users profile has a folder under it called "Local Settings". >> THIS FOLDER DOES NOT ROAM. This folder only exists during your >> session on the local machine. When you logout, the data in that >> fold

Re: [OpenAFS] OpenAFS on windows - profile in AFS, who uses it?

Rodney M. Dyer <[EMAIL PROTECTED]> wrote: > So the only variable we have left is > "%username%". How am I supposed to setup folder redirection? > I can't use: > "n:\cell\usr\a\%username%\pc\win_data\Desktop" > > That won't work since the parent folders are different for every user. I have n

Re: [OpenAFS] max afs partition size

Can't one create a "sparse file" and loopback mount it for testing? Or do you need to actually have that much space to try it out? I do this for testing iSCSI limits. < wrote: > Neither Derrick nor I have access to a partition with that much > storage in order to test what does and what does no

Re: [OpenAFS] can someone point me in the right direction on cleaning up RO volumes?

Kim Kimball <[EMAIL PROTECTED]> wrote: > While it's true that putting an RO on the same server and partition > as the RW will save some disk space, it doesn't protect against > failure of the RW storage device (LUN, drive, whatever.) > > I therefore put some critical ROs on separate LUNs on the RW

Re: [OpenAFS] restart times

Russ Allbery <[EMAIL PROTECTED]> wrote: > That said, I think the advice to restart the file servers weekly is > pretty thoroughly obsolete. We've not done that at Stanford since at > least 1995, and I think longer. Does the default installation still setup an automatic weekly restart at 4:00a on

Re: [OpenAFS] Puzzler: lack of access to AFS files

Rodney M. Dyer <[EMAIL PROTECTED]> wrote: > At 05:26 PM 12/12/2007, Jeffrey Altman wrote: >> I disagree. We need more resources for testing a broader range of >> scenarios than we currently have available. The performance >> improvements must be implemented or you absolutely should go find >> som

Re: [OpenAFS] aix 5.3 crash becasue of afs client 1.4.4

sajid <[EMAIL PROTECTED]> wrote: > we are running afs client 1.4.4 on aix 5.3. and its doing core dump > and reboot the machine sometime. afs server 1.4.5 is running on Red > Hat Enterprise Linux AS release 4 (Nahant Update 5). > im getting the following error on the aix server Did you compile the

Re: [OpenAFS] What is the best way to delete an old removed server from VLDB

Jerry Normandin <[EMAIL PROTECTED]> wrote: > I inherited a mess I want to fix. My AFS deployment here has old site > entries in the vldb. What is the best way to remove > > Server entries from vldb ? vos changeaddr -remove usually works for me, assuming you do not actually have volumes on that s

Re: [OpenAFS] Problem for file system navigation in a backup volume tree

Jason Edgecombe <[EMAIL PROTECTED]> wrote: > Jeffrey Altman wrote: >> And I just added equivalent functionality to the Windows client. If >> you want to test it, let me know. > > Should "-backuptree" be the default? What might that break? I'm > thinking that -backuptree would be the behavior a use

Re: [OpenAFS] Deletion of clones & source volumes takes a while with vos move

Jeffrey Altman <[EMAIL PROTECTED]> wrote: > Christopher D. Clausen wrote: > >> Apply the no-fsync patch > > There is no patch to apply. Just update to 1.4.5. Hmm... Jason's previous email seemed to indicate that he was already running 1.4.5. I guess we need to k

Re: [OpenAFS] Deletion of clones & source volumes takes a while with vos move

Jason Edgecombe <[EMAIL PROTECTED]> wrote: > When running a vos move, deleting a clone or the source volume seems > to take almost as much time as the copying of the data itself. > > Does AFS scrub the disk when deleting volumes or does it just release > the inodes? Not that I am aware of. > Plat

Re: [OpenAFS] E212: Can't open file for writing

Ron Croonenberg <[EMAIL PROTECTED]> wrote: > Christopher D. Clausen wrote: >> Ron Croonenberg <[EMAIL PROTECTED]> wrote: >>> Uhm... I noticed that after a while (an hour or so)that problem >>> "fixed itself" ? It looks like I copied the files

Re: [OpenAFS] Kerberos5 and afs

Steve Devine <[EMAIL PROTECTED]> wrote: > Forgive the slightly off topic post but I think it applies here as > well on the kerberos list > Several years ago we moved to MIT kerberos 5. At the time I set the > master key in the kdc.conf to: > master_key_type = des-cbc-crc > I did this to allow tra

Re: [OpenAFS] Kerberos5 and afs

Steve Devine <[EMAIL PROTECTED]> wrote: > Does the order of the enctypes listed in the kdc affect this? > This is my current kdc.conf entry: > supported_enctypes = des3-hmac-sha1:normal des-cbc-crc:normal > des-cbc-crc:v4 des-cbc-crc:afs3 > I'm not sure how to manipulate the kvno on the AD I curre

Re: [OpenAFS] E212: Can't open file for writing

Ron Croonenberg <[EMAIL PROTECTED]> wrote: > Uhm... I noticed that after a while (an hour or so)that problem > "fixed itself" ? It looks like I copied the files there and it took a > long while before it was actually there (even though sftp said it > transferred the files)? Writes go to your AFS

Re: [OpenAFS] Best practice: inode or namei fileserver?

Jason Edgecombe <[EMAIL PROTECTED]> wrote: > We are currently running inode-based fileservers on solaris 9. > > Does the namei filesystem play nice with logging filesystems? It seems to. > Going forward, which format is recommended, inode or namei? I migrated some Solaris systems to namei simply

Re: [OpenAFS] trouble running programs out of AFS after imaging

Dean Knape <[EMAIL PROTECTED]> wrote: > No and yes. According to section 3.38 of release notes, if SID is > regenerated by sysprep then there is no need to delete the file. > However, I did eventually delete the cache file as I was > troubleshooting. Well, this is eay to check. Just run fs uuid

Re: [OpenAFS] trouble running programs out of AFS after imaging

Dean Knape <[EMAIL PROTECTED]> wrote: > Jeffrey Altman wrote: >> Something to note. You are attempting to run a 32-bit exe from >> 64-bit Server 2003. I wonder if that is a variable. >> > I was thinking same but everything runs fine on my base image. It's > only after a sysprep that > things fal

Re: [OpenAFS] trouble running programs out of AFS after imaging

Dean Knape <[EMAIL PROTECTED]> wrote: > Christopher D. Clausen wrote: >> What application? >> >> Could you copy the application in question to local disk? (E.g. did >> you actually have read access to it?) > > For testing and example, I've install

Re: [OpenAFS] Error 11862791 AFS service may not have started

MG <[EMAIL PROTECTED]> wrote: > I downloaded and installed 1.5.27 and got the same error. > > ipconfig /all indicates that AFS is bound to the loopback adapter. The > only anomalous setting is that DHCP enabled = "NO". DHCP should not be enabled on the loopback adapter. By default, it has the h

Re: [OpenAFS] trouble running programs out of AFS after imaging

Dean Knape <[EMAIL PROTECTED]> wrote: > I have a W2K3 R2 server VM with OpenAFS 1.5.26 provisioned from a > sysprep image. > > When I try to run a program out of AFS from explorer I get "Windows > cannot access the specified device, path, or file. You may not have > the appropriate permissions to a

Re: [OpenAFS] installing loopback adapter after sysprep

Dean Knape <[EMAIL PROTECTED]> wrote: > I have a sysprep'd W2K3 R2 server VM with OpenAFS 1.5.26. I've added > the necessary GuiRunOnce entry in the sysprep.inf using the > instloop.exe extracted from this version's MSI to have the loopback > adapter reinstalled. > > Instloop does reinstall the lo

Re: [OpenAFS] where does volserver deposit its core dumps?

Adam Megacz <[EMAIL PROTECTED]> wrote: > Could anybody tell me where volserver leaves its core dumps? (the > answer is not /var/lib/openafs/cores/) > > I have to honestly admit I've never debugged a program via core dumps > before. Always used printf() or [last resort] gdb. > > Unfortunately in my

Re: [OpenAFS] openAFS 1.4.4 - ticket contained unknown key version number

Hamish <[EMAIL PROTECTED]> wrote: > yeah, can't get on at the moment... > > QUick question... When I kinit as admin & give my passwd, I get in > klist the default principal 'admin', but the two service principals > are krbtgt/... and afs/[EMAIL PROTECTED] Those are Kerberos TICKETS. > When I aklo

Re: [OpenAFS] openAFS 1.4.4 - ticket contained unknown key version number

Hamish <[EMAIL PROTECTED]> wrote: > On Friday 26 October 2007 18:09, Christopher D. Clausen wrote: >> Hamish <[EMAIL PROTECTED]> wrote: >>> On Friday 26 October 2007 17:49, Hamish wrote: >>>> Thanks. I'd just taken that route when I got your reply. (

Re: [OpenAFS] openAFS 1.4.4 - ticket contained unknown key version number

Hamish <[EMAIL PROTECTED]> wrote: > On Friday 26 October 2007 17:49, Hamish wrote: >> Thanks. I'd just taken that route when I got your reply. (I think I >> probably stuffed it up trying to build the second machine & >> rerunning some of the commands that should only have been run once. >> Joys of

Re: [OpenAFS] openAFS 1.4.4 - ticket contained unknown key version number

Hamish <[EMAIL PROTECTED]> wrote: > Why the heck do I get an unknown key version when trying to do > anything? I've googled till I'm blue in the face and have only found > some really really old emails asking questions with no answers... The > Wiki seems devoid of any info unless it's using kaserve

Re: [OpenAFS] Strategy for disaster recover of an AFS fileserver

Lars Schimmer <[EMAIL PROTECTED]> wrote: > Jose Calhariz wrote: >> In recent past I had lost a /vicepa partition with half of the >> volumes of my cell and found that my backup procedure is not fast >> enough for recovering so many volumes and data. I am using amanda >> without afs patch. >> >> Wh

Re: [OpenAFS] Password transition to krb5 - your methods?

Jeff Blaine <[EMAIL PROTECTED]> wrote: > You had me wondering. > > The only reference to afs2k5db I could find in source was > > src/packaging/RedHat/openafs.spec.in > > Which then leads me to: > > Are the RedHat builds getting preferential treatment with > regard to this? Is there a reason?

Re: [OpenAFS] Automatic move of volumes

Steven Jenkins <[EMAIL PROTECTED]> wrote: > On 10/24/07, Brandon S. Allbery KF8NH <[EMAIL PROTECTED]> wrote: >> On Oct 24, 2007, at 10:15 , Steven Jenkins wrote: >>> - the RO handling is not good -- what happens if the _only_ RO is on >>> the old server and the remsite happens? Clients with existi

Re: [OpenAFS] Automatic move of volumes

Steven Jenkins <[EMAIL PROTECTED]> wrote: > On 10/24/07, Derrick Brashear <[EMAIL PROTECTED]> wrote: >> perl scripts exist to do it and I think have been posted here in the >> past; they may even deal with the "RO already exists" case. > > It would be nice if there were a repository of publically a

Re: [OpenAFS] AFS Fileserver Won't Start --> Can't Release root.cell or root.afs

Kim Kimball <[EMAIL PROTECTED]> wrote: > You might also try > vos remove .readonly #for each > readonly instance > vos backup > vos dump .backup | vos restore > -overwrite full > > Use the same volume name for each instance of > > This will give you a new volumeID for which will be > re

Re: [OpenAFS] AFS Fileserver Won't Start --> Can't Release root.cell or root.afs

Karl M. Davis <[EMAIL PROTECTED]> wrote: > I then tried running "vos changeaddr -oldaddr 127.0.0.1 -remove", but > it looks like some of my volumes are still "stuck" on the old IP: > > [EMAIL PROTECTED]:~$ sudo vos changeaddr -oldaddr 127.0.0.1 -remove > -localauth -verbose > Could not remove serve

Re: [OpenAFS] AFS Fileserver Won't Start --> Can't Release root.cell or root.afs

Karl M. Davis <[EMAIL PROTECTED]> wrote: > Well, after rebooting again, things suddenly seem to be working. No > idea why... > > I still have some problems with making RO copies of root.cell and > root.afs, though. Running "vos release" gives me: > << > [EMAIL PROTECTED]:~$ vos release -id root.c

Re: [OpenAFS] fileserver on etch may crash because ulimit -s 8192

Russ Allbery <[EMAIL PROTECTED]> wrote: > XFS is a lot better than ReiserFS, though, in terms of support and > knowledge by the kernel developers, and would probably be fine. It is > faster for a lot of usage profiles than ext3. I have had some problems with XFS on a Debian-based AFS fileserver.

Re: [OpenAFS] AFS Fileserver Won't Start

Karl M. Davis <[EMAIL PROTECTED]> wrote: Hi Karl. I'm going to assume it was you in the #openafs IRC channel. I'd suggest staying logged in if you really want help. You have to wait for people to have time to respond. And more than the 15 minutes that you waited. We do need to do things lik

  1   2   3   4   >