On Thu, Jun 27, 2013 at 09:28:39AM +0200, Petter Reinholdtsen wrote: > [Petter Reinholdtsen] > > We can disable autofs on diskless workstations and use sshfs > > instead. The question is, do we want to? > > I ran the file system test from <URL:https://github.com/gebi/fs-test>, > and got this result: > > Testing POSIX/Unix sematics on file system > info: testing symlink creation > info: testing hard link creation > error: link() succeeded but link count was not incremented > info: testing subdirectory creation > info: testing umask effect on file creation > error: Wrong file mode 664 when creating using mode 666 and umask 000 > info: sqlite worked > info: testing fcntl locking > Read-locking 1 byte from 1073741824 > Read-locking 510 byte from 1073741826 > Unlocking 1 byte from 1073741824 > Write-locking 1 byte from 1073741824 > Write-locking 510 byte from 1073741826 > Unlocking 2 byte from 1073741824 > > So umask and hardlink handling is broken. The umask problem will > affect file sharing using NFS on shared directories, while the > hardlink issue probably will not affect many programs. > > Disabling autofs will make it harder to make sure shared directories > are mounted on all clients too, so if we drop autofs on diskless > workstations, I guess the umask problem matter less than the lack of > easy sharing of files. :) I believe to have choice for diskless workstations would be good.
(1) Run without any configuration: access home dirs via sshfs, use ldm
to login.
(2) Run like before in Squeeze: add them to LDAP, use NFS. This needs
further configuration: kdm, gdm3 or lightdm must be used to log in, so
DEFAULT_DISPLAY_MANAGER must be set (full path) in lts.conf, LDAP or
kernel commandline (pxeboot).
I modified /usr/share/ltsp/init-ltsp.d/60-edu-diskless-ws to have (1)
available again. (Some other change too, due to new version of
nsswitch.conf.)
---------------------------------------------------------------
#!/bin/sh
# For Debian Edu diskless workstations (i.e. ltsp fat clients).
# As dns service is available, modify priority to make KERBEROS work.#
if boolean_is_true "$LTSP_FATCLIENT"; then
if [ -z "$DEFAULT_DISPLAY_MANAGER" ]; then
# Disable autofs to let sshfs mount home dir.
update-rc.d autofs disable 2 >/dev/null 2>&1
else
sed -i '/automount/ s/files\ ldap/ldap/' /etc/nsswitch.conf
sed -i s/files\ dns\ dns/dns\ files/ /etc/nsswitch.conf
# Enable services, just to be sure.
for service in autofs nfs-common nslcd nscd ; do
update-rc.d $service enable 2 >/dev/null 2>&1
done
fi
# Fix proxy setting
dhclient -nw
fi
---------------------------------------------------------------
LTSP configuration in LDAP would have to be changed too, cause lightdm
is blacklisted by default in LTSP.
Tested everything: The simple way to get the missing Kerberos TGT when
running (1) does't work, cause the REALM isn't set right. The hard way
(x-termial, kinit) works.
I wonder, if I should commit this.
Wolfgang
signature.asc
Description: Digital signature
