Hi Holger,
On Sat, Aug 06, 2016 at 11:03:45AM +, Holger Levsen wrote:
>
> I believe it's useful to have the maintainers/uploaders field of our
> packages match reality, that is, to only list people who are active
> on Debian Edu or plan to become active again.
>
> So I'm wondering, Andreas,
Hi,
On Thu, Jun 23, 2016 at 08:26:12AM +0200, Andreas Tille wrote:
> I've just read this article about UCS@school
>
> http://www.pro-linux.de/news/1/23680/ucsschool-41-r2-freigegeben.html
>
> Is there any relation to Debian Edu work and if not why not or should we
> cooperate to some extend?
Hi,
On Sun, Jul 05, 2015 at 11:40:36AM +0200, Giorgio Pioda wrote:
I can confirm a boot race condition (IIRC somebody talked six months ago about
autofs/systemd issues in this mailing list)
Restarting manually the sercvices in the (more or less correct) order on
tjener:
1) nscd nslcd
Hi Holger!
On Thu, Nov 27, 2014 at 08:05:54PM +0100, Holger Levsen wrote:
(are you still subscribed to the list?)
Sure! (Although sometimes a bit flooded by mails ...)
On Donnerstag, 27. November 2014, Andreas B. Mundt wrote:
The issue at hand is discussed in #758992 and #769710
Hi,
On Wed, Nov 26, 2014 at 09:21:22PM +0100, Holger Levsen wrote:
On Mittwoch, 26. November 2014, Benjamin Kaduk wrote:
Please unblock package krb5
systemd does not respect inserv overrides (see #759001) and does
not plan to do so, since they appear to be used by only two packages
in
Hi,
On Tue, Aug 26, 2014 at 06:40:30AM +0200, Petter Reinholdtsen wrote:
Btw, regarding our Kerberos error on the main server, Andreas B. Mundt
just mentioned on IRC that URL: https://bugs.debian.org/758992 would
probably hit us too. It affect Kerberos with LDAP backend when using
systemd
Hi Holger et. al,
[cc debian-science, related post:
URL:https://lists.debian.org/debian-edu/2013/06/msg00177.html]
On Fri, Jun 14, 2013 at 11:54:05PM +0200, Holger Levsen wrote:
On Freitag, 14. Juni 2013, Andreas B. Mundt wrote:
libticables-1.3.4
libtifiles-1.1.6
libticonv-1.1.4
Hi all,
I would like to ask if everybody is fine with adding a few more
packages to the debian-edu alioth git repository. The packages are
usefull for Texas Instruments calculators, and the -edu fits nicely I
guess:
libticables-1.3.4
libtifiles-1.1.6
libticonv-1.1.4
libticalcs-1.1.8
Hi Giorgio,
On Sun, May 26, 2013 at 09:43:17AM +0200, Giorgio Pioda wrote:
On Sat, May 25, 2013 at 05:37:20PM +0200, Petter Reinholdtsen wrote:
pam_acct_mgmt: Authentication failure
But actually sssd works, krb5 tickets are OK and right before this message
pam_sss claims a
Hi Petter,
On Sun, May 26, 2013 at 11:41:48AM +0200, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
[1] Add 'session required pam_mkhomedir.so skel=/etc/skel umask=0027'
to /etc/pam.d/common-session
However this only creates the directories when no NFS-homedirs are
availabel
Hi Giorgio,
On Sun, May 26, 2013 at 11:28:43AM +0200, Giorgio Pioda wrote:
On Sun, May 26, 2013 at 10:23:41AM +0200, Andreas B. Mundt wrote:
Hi Giorgio,
On Sun, May 26, 2013 at 09:43:17AM +0200, Giorgio Pioda wrote:
On Sat, May 25, 2013 at 05:37:20PM +0200, Petter Reinholdtsen wrote
Hi Julien,
I hope you enjoyed holidays!
On Thu, May 23, 2013 at 10:29:41AM +0200, Julien Lambot wrote:
Many thanks for that feature ! Great you could implement it.
Back on testing after some holidays :)
How is your network performance going? I found two issues that might
be interesting to
Hi all,
I just accidentally came along a package which seems to be interesting
in the current context:
http://packages.debian.org/wheezy/unburden-home-dir
Best regards,
Andi
--
To UNSUBSCRIBE, email to debian-edu-requ...@lists.debian.org
with a subject of unsubscribe. Trouble?
(cc debian-edu, as they are working on the same issue ...)
Hi all,
with the latest commit, roaming workstations are available in
Debian-LAN!
URL:http://anonscm.debian.org/gitweb/?p=collab-maint/debian-lan.git;a=commitdiff;h=9aef028d091e30f2a560315e89c604e7a07c2ffc
The ROAMING class
Hi,
I am wondering what the 'best' options mounting the home directories
via NFSv4 are.
IIRC, by default debian-edu uses rsize=32768,wsize=32768, which has
been adopted by debian-lan too.
Running a test without defining rsize,wsize on 3 different setups, I
got the following (remove rsize,wsize
Hi Klaus,
many thanks for sharing your experience!
On Mon, May 20, 2013 at 12:28:24PM +0200, Klaus Knopper wrote:
We have been running NFS over WLAN, and experienced problems that turned
out to be related to bufferbloat
(http://en.wikipedia.org/wiki/Bufferbloat) in combination with low
[cc ... let's ask on the debian-edu list if they know more ... ]
Hi all,
we would like to implement something like 'roaming workstations' in
debian-lan. Can someone give us some hints on how to do that best?
Is there any experience available with roaming workstations, do they
work sucessfully,
Hi all,
On Mon, Mar 25, 2013 at 09:56:27PM +0100, Petter Reinholdtsen wrote:
[Martin Schulte]
thank you for your answer.
I found a way to get the passwords in cleartext from lenny ldap, thanks
to windows, the secures OS ever :-) and his LM-Hash. You can crack this
LM-hash using ophcrack
Hi Martin,
On Fri, Mar 22, 2013 at 06:33:11PM +0100, Martin Schulte wrote:
while trying to upgrade to squeeze and restore old passwords, i had
a look to the ldap in squeeze. I found the two attributes
'krbPrincipalKey' and 'sambaMungedDial'. Can someone tell me, what
is the use of these two
Hi,
On Sun, Feb 03, 2013 at 06:24:52PM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
FYI, it looks as if allow_weak_crypto = true [1] is not needed
anymore for wheezy. This is at least the case for debian-lan.
What was it needed for in the first place?
Mounting NFSv4 IIRC. Cf
Hi,
FYI, it looks as if allow_weak_crypto = true [1] is not needed
anymore for wheezy. This is at least the case for debian-lan.
Best regards,
Andi
[1] c.f. debian-edu-config/share/debian-edu-config/tools/kerberos-kdc-init
--
To UNSUBSCRIBE, email to
Hi,
On Sun, Jan 20, 2013 at 05:25:16PM +0100, Wolfgang Schweer wrote:
On Sun, Jan 20, 2013 at 01:38:22PM +0100, Andreas B. Mundt wrote:
I had to modify the variable name to be send to gosa-sync:
- postmodify=USERPASSWORD=%userPassword /usr/bin/sudo
/usr/local/sbin/gosa
Hi,
On Tue, Jan 22, 2013 at 05:43:59AM +0100, Mike Gabriel wrote:
Hi Andi, hi Wolfgang,
On Di 22 Jan 2013 00:38:32 CET Wolfgang Schweer wrote:
In addition, I had to rewrite gosa-sync.
gosa-sync seems to work here without any change.
In Debian Edu squeeze and GOsa² 2.6 the gosa-sync
Hi,
concerning Wolfgangs work on the GOsa setup for wheezy which I
currently do for debian-lan, I found the following which I would like
to share to not double debugging.
I had to modify the variable name to be send to gosa-sync:
pathMenu
plugin
Hi Bengt,
On Sun, Oct 14, 2012 at 10:38:39AM +1100, Bengt Thuree wrote:
[...]
I really wish I can get this to work, but might have to have a second
look at Edubuntu :(, but since everything else is Debian, I am not to
keen on that.
Another possibility you might want to take a look at is
Hi Sebastian,
I've added users via csv-import and most user-accounts are fine, but
some have no acces to their own homedirectory. (The owner is someone
else) Any suggestion how this could happen and/or how to fix it?
This could be worth a try:
Hi Mike,
On Tue, Aug 21, 2012 at 10:19:00PM +0200, Mike Gabriel wrote:
On Di 21 Aug 2012 22:02:20 CEST Andreas B. Mundt wrote:
[...]
This could be worth a try:
https://init.linpro.no/pipermail/skolelinux.no/commits/2012-August/119291.html
[...]
I have just yesterday committed
Hi everybody,
I am happy to report that with the last commits there are no specific
hardcoded IP addresses left in the config space [1] and it should be
possible to use debian-lan in a variety of networks.
All network-specific information and used IP addresses are collected
in class/SERVER_A.var
Hi Giorgio and others,
On Mon, Apr 09, 2012 at 11:21:37AM +0200, Giorgio Pioda wrote:
In my case is not a matter of randomizing.
We have an internal 10.x.x.x/23 provided by the
national telecom and we are not able to
change the subnet, otherwise we would collide
with other schools.
I had
--
--
A N D R E A S B. M U N D T
GPG key: 4096R/617B586D 2010-03-22 Andreas B. Mundt--andreas.b.mu...@web.de
Andreas B. Mundt--andi.mu...@web.de
Hi,
On Sun, Apr 08, 2012 at 11:13:40AM +0200, Giorgio Pioda wrote:
Debian LAN is indeed interesting, simpler approach tha Edu. But I see some
blocking missing features.
1) Subnet switch to an arbitrary 10.x.x.x/24 or even better 10.x.x.x/23 and
also 192.169.x.x networks
It shouldn't be a
Hi Giorgio,
On Sun, Apr 08, 2012 at 12:01:19PM +0200, Giorgio Pioda wrote:
Providing a setup without the mainerver acting as gateway ( issue 2) )
is planed for Setup_B.
Teased to see it soon :-)
Done.
Here it is:
/20120320200454.gf18...@login2.uio.no
--
--
A N D R E A S B. M U N D T
GPG key: 4096R/617B586D 2010-03-22 Andreas B. Mundt--andreas.b.mu...@web.de
Andreas B. Mundt--andi.mu...@web.de
On Tue, Mar 20, 2012 at 10:00:43PM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
Just remove the -maxlife option completely. Use something like:
kadmin.local -q add_policy -minlength 4 -minclasses 2 user
What is the default value when -maxlife is not used?
--
I use
Forwarded message, as I forgot to cc the debian-edu list:
On Tue, Mar 20, 2012 at 10:00:43PM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
Just remove the -maxlife option completely. Use something like:
kadmin.local -q add_policy -minlength 4 -minclasses 2 user
What
Hi all,
On Fri, Feb 10, 2012 at 10:20:57PM +0100, Petter Reinholdtsen wrote:
I assume netdevice is for routers and switches, not for Linux hosts.
If this is wrong, please tell me and we can easiliy change this.
IIRC I used netdevice for all machines that do not serve any services
to the
Hi,
On Sat, Feb 11, 2012 at 09:17:13AM +0100, Giorgio Pioda wrote:
[...]
Now I'm hanging with the autofs question. I have to test again but
it seems that only Ubuntu 1004 have a good implementation; all other
suffers, like debian wheezy, the fact that autofs starts to early
in boot phase
Hi,
On Sun, Feb 05, 2012 at 05:25:20PM +0100, Giorgio Pioda wrote:
The script executed right after authentication copies the user's
Kerberos ticket to the file krb5cc_diskless which is owned by root.
This ticket will be picked up by gssd to create the security context
needed. However,
On Sun, Feb 05, 2012 at 10:51:08PM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
How long? I think entering the username triggers autofs (to read the
user's configuration, for example which desktop he want's to start by
default). What if someone takes 15 seconds to enter his
Hi Giorgio,
On Sat, Feb 04, 2012 at 10:17:23AM +0100, Giorgio Pioda wrote:
I got Ubuntu running, nice. But IMHO it shouldn't. I don't understand
the black magic I've produced by myself, about the nfs/client kerberos
granting.
I didn't copy nor generate any krb5.keytab for the nfs/client
Hi Helge,
On Fri, Feb 03, 2012 at 05:36:01PM +0100, Helge Kreutzmann wrote:
On Thu, Jan 19, 2012 at 10:21:27PM -0400, David Prévot wrote:
You are noted as the last translator of the translation for
debian-edu-doc. The English template has been changed, and now some messages
are marked
Hi,
On Fri, Jan 27, 2012 at 11:14:04PM +0100, Giorgio Pioda wrote:
your solution seems more or less an unavoidable hack.
Nice would be to tell Kerberos to avoid service check and control
only user ID.
What about this:
Hi everybody!
Since quite some time we have been thinking about how to make
kerberized NFSv4 mounting of home directories work with diskless
clients, where no machine credentials (keytab) are available.
It was mentioned [1] that using -n for gssd on the diskless client
might help, however this
Hi,
On Fri, Jan 27, 2012 at 09:19:21PM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
[...]
The script executed right after authentication copies the user's
Kerberos ticket to the file krb5cc_diskless which is owned by root.
This ticket will be picked up by gssd to create
Hi Mike,
On Sun, Sep 04, 2011 at 09:57:25PM +0200, Mike Gabriel wrote:
Also: on diskless workstations the preseeding values for krb5-config
do not all ,,arrive'', only the default_realm is set, but not the
INTERN = {servers} server definitions... That's why I chose
cfengine in the first
user debian-edu@lists.debian.org
usertag 638157 + debian-edu
thanks
On Thu, Aug 18, 2011 at 10:52:18AM +0200, Mike Gabriel wrote:
Hi all,
is it intended that current diskless workstations in Skolelinux do
not use kerberized NFSv4?
Hi,
it looks like kerberization does not work with
Hi Thomas,
On Sun, Jul 24, 2011 at 08:10:47PM +0200, Thomas Koch wrote:
the Debian-Edu talk tomorrow on debconf will overlap with the ZSH Skills-
Exchange session... :-(
Luckily not tomorrow, but on thursday ... :-)
So I read the documentation and throw out some questions here:
* Could
Hi all,
right now I started preparing the slides for the DebConf talks I
registered:
http://penta.debconf.org/dc11_schedule/events/744.en.html
http://penta.debconf.org/dc11_schedule/events/779.en.html
The talks are bof's i.e. open discussions and although I
registered both of them, this doesn't
Hi Marius,
On Sat, Jul 02, 2011 at 11:06:20PM +0200, Marius Kotsbak wrote:
On 02. juli 2011 15:43, Andreas B. Mundt wrote:
usually this happens when the home directory cannot be mounted.
Did you add the diskless machine in GOa and run ldap2bind after that?
You mean ldap2netgroup
tags 632464 + moreinfo unreproducible
thanks
Hi,
usually this happens when the home directory cannot be mounted.
Did you add the diskless machine in GOa and run ldap2bind after that?
Whenever I tested that (and added the machine correctly to LDAP),
things worked fine here.
Best
Package: debian-edu-config
Severity: normal
User: debian-edu@lists.debian.org
UserTags: debian-edu
Hi,
unfortuntelly, it looks like debian-edu-fsautoresize does not work at
all for d-e-squeeze:
root@tjener:~# debian-edu-fsautoresize -vn
Checking / [/dev/mapper/vg_system-root]
A: 983704
tags 631357 + pending
# fixed in svn
thanks
Looks as if the devices get other names today. Fixed in svn, hopefully
there are no other changes necessary, but resizing worked again after
applying the fix.
--
To UNSUBSCRIBE, email to debian-edu-requ...@lists.debian.org
with a subject of
Dear Nigel,
On Wed, Jun 22, 2011 at 09:39:20AM +0900, Nigel Barker wrote:
I have some concerns about browsers that might affect other schools,
[...]
So it seems that browsers are expected to be updated every few months
nowadays! It might not be possible to even complete a school year
Hi,
I tried to find the reason for the remaining errors reported by the
testsuite (Terminalserver DVD installation):
error: can not find SSL certificate for http://www,
error: Unable to download
Hi,
On Wed, Jun 15, 2011 at 02:54:40PM +0200, Holger Levsen wrote:
I had to revert some modifications concerning krb5-config, as it was
not possible to login at all on other machines. I suggest to postpone
these modifications until wheezy. The same is valid for NFSv4 with
Hi all,
On Tue, Jun 07, 2011 at 01:35:19AM +0200, Holger Levsen wrote:
The big result of the meeting:
- Beta1 release - codename no more nice to have
- known problems: windows clients cannot join the samba domain
--endquote ---
afaik the installation also hangs at the end and diskless
Package: sitesummary-client
Severity: important
User: debian-edu@lists.debian.org
Usertags: debian-edu
An error is reported by nagios although anything is OK. The reason seems to be
the wrong-placed nagios-nrpe-commands.cfg, (see subject.) From the source of
nagios-nrpe-2.12
On Mon, Jun 13, 2011 at 07:14:29PM +0200, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
An error is reported by nagios although anything is OK.
Which error? I know of one such error, and its reason is probably not
what you suggested.
check_kernel_status fails with UNKNOWN
Hi,
On Mon, Jun 13, 2011 at 07:36:16PM +0200, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
check_kernel_status fails with UNKNOWN. This is not due to a newer
kernel, the lenny stuff works for squeeze, and the script gives the
correct answer when called on the command line
Hi,
On Mon, Jun 06, 2011 at 11:11:12PM +0200, Mike Gabriel wrote:
last night I have looked into Samba+LDAP+GOsa. The realization about
that part for Debian Edu/Skolelinux is: if we want flawless und
fluent Windows integration in Debian Edu (yes, we want that!!!) then
there is still a bunch
Hi,
On Mon, May 30, 2011 at 01:26:16PM +0200, Holger Levsen wrote:
On Montag, 30. Mai 2011, Holger Levsen wrote:
meet for dinner sounds like a great plan! 20oo?
I suggest either frank frei which is located close to the city center (S-
Bahn Sternschanze) or the Schachcafe which is located
Hi Volker,
On Tue, May 17, 2011 at 08:10:27PM +0200, Volker Cordes wrote:
Do I have to register the clients somewhere? I changed /etc/exports to
allow mounts from 192.168.0.0/24 because I still haven't installed the
netgroups plugin.
I would expect that if you don't use the netgroups in
Hi all,
an update after the latest DVD build:
On Mon, May 09, 2011 at 08:40:02PM +0200, Andreas B. Mundt wrote:
* kdm is missing after the installation. (?!)
kdm is installed and works again.
The netgroups plugin is not yet installed by default.
Installation steps:
aptitude install
Hi,
On Tue, May 10, 2011 at 11:56:22AM +0200, Holger Levsen wrote:
On Montag, 9. Mai 2011, Andreas B. Mundt wrote:
after installing a debian-edu squeeze tjener from the latest DVD, I am
happy to announce that it looks like debian-edu is kind of feature
complete.
[...]
But before
Hi Volker,
On Tue, May 10, 2011 at 07:32:08PM +0200, Volker Cordes wrote:
I just installed debian edu based on squeeze and need some help with
configuring the things I need. It would be great if you could point
me to some documentation or answer my questions directly.
So here is how far I
Hi all,
after installing a debian-edu squeeze tjener from the latest DVD, I am
happy to announce that it looks like debian-edu is kind of feature
complete. However, there is still some work to do:
* kdm is missing after the installation. (?!)
Here is how to test the latest installation. After
Hi,
On Thu, May 05, 2011 at 10:16:19PM +0200, Holger Levsen wrote:
On Donnerstag, 5. Mai 2011, Andreas B. Mundt wrote:
Are you going to be there too? Does anybody plan to give a
presentation about debian-edu? I think we should at least have some
kind of open discussion like a BoF session
Hi everybody,
yesterday I registered for debconf11. Unfortunatelly, I am not able to
be there from the beginning, but probably I'll turn up on Wednesday.
Are you going to be there too? Does anybody plan to give a
presentation about debian-edu? I think we should at least have some
kind of open
Hi,
On Mon, May 02, 2011 at 08:07:25PM +0200, Thomas Koch wrote:
Philipp Huebner:
On 02/05/11 17:52, Thomas Koch wrote:
to be seriously lacking behind Debian releases.
To be honest - so does Debian Edu ;)
Well, I should have made this more clear: They are currently in the release
Hi,
On Thu, Apr 28, 2011 at 09:40:37AM +0200, Frank Weißer wrote:
I can login to gosa as admin with root-password but don't see any
possibility to add users, groups, machines or anything else. Is my
installation broken or how have i to administrate tjener?
Log in as 'super-admin', not
Hi Frank,
On Tue, Apr 26, 2011 at 10:33:52PM +0200, Frank Weißer wrote:
I just tried to install a pure tjener from
ftp://ftp.skolelinux.org/cd-squeeze-test-amd64-i386-netinst/debian-edu-amd64-i386-NETINST-1.iso
date 17.04.2011 and get 10.0.2.2/255.255.254.0 as its network configuration.
Hi,
On Mon, Mar 28, 2011 at 01:01:52PM +0100, Holger Levsen wrote:
I'm wondering who/how many would be joining a developer meeting May in
Hamburg?
I am rather busy right now (and probably in May again), but I would
try to join you in any case.
The goal I would like to work on is the
Hi,
On Fri, Mar 11, 2011 at 05:20:47PM +0100, Andreas Schockenhoff wrote:
in /etc/init.d/update-hostname we try to set the hostname for the
workstations from DNS Server.
This can not work because Networkmanager is not started.
Strange, it works nicely here (latest DVD installation).
Hi all,
while working on the DHCP-setup I accidentally met the
isc-dhcp-relay package which can be used to relay DHCP requests. For
example, we could use it instead of running dhcp-servers on the
terminal-servers.
Is there a reason we don't use the relay method but stand-alone
dhcp-servers?
Hi Petter,
thanks for your comment.
On Fri, Feb 25, 2011 at 01:31:19PM +0100, Petter Reinholdtsen wrote:
* Move DNS resolution of 'ltspserver' from ldap to static files, as
the thin clients' subnet is not a subdomain that should be managed
in GOsa.
Eh, of course it should. All
Hi,
when installing the workstation profile (I tested this in combination
with the ltsp-server-profile), the network-manager package seems to
spoil the installed system.
First, it removes the dhcp interface by adding '#NetworkManager#' in
front of the relevant line in /etc/network/interfaces:
Hi,
On Sat, Feb 19, 2011 at 08:14:03AM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
Hmm, I don't know how to fix this. To me it looks a bit like
sacrificing a clear and common DNS setup in favor of a very special
setup (for which I don't know how to get Kerberos working
Hi,
On Sat, Feb 19, 2011 at 12:33:33PM +0100, Andreas Schockenhoff wrote:
Hi,
On Sat, 2011-02-19 at 12:21 +0100, Andreas B. Mundt wrote:
But exim seems to be broken no mail delivery to root.
Right. Hmm. Permissins on /root seem not to allow the transport of
mail to root's mbox
Hi all,
a short update from my side:
On Sat, Feb 19, 2011 at 06:22:54PM +0100, Andreas Schockenhoff wrote:
a new hint. dns seams to works also on a workstation now.
ldapsearch -xZWD
'uid=super-admin,ou=People,dc=skole,dc=skolelinux,dc=no'
Works on tjener and on the diskless workstation
Hi,
first, thanks for starting the tests!
On Fri, Feb 18, 2011 at 10:00:55AM +0100, Andreas Schockenhoff wrote:
On Wed, 2011-02-16 at 23:10 +0100, Andreas B. Mundt wrote:
I am happy to report that the latest test-DVD of our forthcoming
debian-edu-squeeze release is ready for testing
X-Debbugs-Cc: vagr...@debian.org
Hi,
On Wed, Feb 16, 2011 at 09:59:44PM +0100, Wolfgang Schweer wrote:
On Mi, 16 Feb 2011, Andreas B. Mundt wrote:
to get Diskless Clients work with Kerberos we first have to find a way
to modify the entires in /etc/hosts.
Currently, there is an entry
Hi Petter,
I guess your help is needed on this issue ...
On Fri, Feb 18, 2011 at 12:09:04PM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
Is there a problem with that I've missed?
I might be mistaken, but I believe the sssd setup script will actually
look up the SRV entry
Hi,
On Tue, Feb 15, 2011 at 11:18:05PM +0100, Christian Kuelker wrote:
On 02/15/2011 07:31 PM, Andreas B. Mundt wrote:
I think the best way to do the migration is completely independent of
all changes I proposed:
* Prepare a list (csv) of all user for every category you use
Hi Petter,
thanks for your reply:
On Fri, Feb 18, 2011 at 07:54:42PM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
Can you elaborate a bit on the scripts that provide this
configurations?
See the postinst of the sssd package.
Would it be possible to modify debian-edu
Hi,
On Fri, Feb 18, 2011 at 11:24:44PM +0100, Andreas Schockenhoff wrote:
On Fri, 2011-02-18 at 16:46 +0100, Andreas B. Mundt wrote:
I installed a combined server and a workstation. I can start a
diskless machine and log in. The hostname is like the one I set in
GOsa.
The disk less
On Thu, Feb 17, 2011 at 06:03:02PM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
Remove duplicate A-records from DNS configuration to make sure the
reverse address mapping needed for reliably issuing a Kerberos service
ticket works. To move services to another machine, add
Hey,
concerning the netgroups in GOsa, here's a collections of stuff that
might help as a starter:
Very basic draft patch (no creation of any netgroups, just adding
machines to existig ones):
URL:http://lists.debian.org/debian-edu/2010/04/msg00124.html
Comment from Cajus:
Hi,
to get Diskless Clients work with Kerberos we first have to find a way
to modify the entires in /etc/hosts.
Currently, there is an entry:
10.0.2.2 server
which spoils Kerberos (error messages about for example
ldap/server@INTERN service tickets not being available).
I tried to find
Hi all,
I am happy to report that the latest test-DVD of our forthcoming
debian-edu-squeeze release is ready for testing. It includes Kerberos
user (and mail) authorization, GOsa as LDAP admin tool and bind as
DNS. The home directory is distributed via NFSv4.
You can rsync your DVD with:
Hi,
in the process of overhauling the ldap tree, I am thinking about
renaming ou=group to ou=groups in order to better reflect the plural
form.
I don't know why ou=group was chosen, perhaps because the expired and
in the meantime deleted RFC2307bis used ou=group in an example. I
cannot imagine
On Tue, Feb 15, 2011 at 11:18:25AM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
I don't know why ou=group was chosen,
It was selected because it is the proposal in the only known document
proposing a standardized LDAP structure, the draft available from
URL:http://tools.ietf.org
Hi Jonas,
On Mon, Feb 14, 2011 at 09:33:12PM +0100, Jonas Smedegaard wrote:
Just stumbled across the package slapd-smbk5pwd, which is also
available in Debian Squeeze.
Could those of you knowledgeable in Samba and Kerberos check it out?
Seems potentially beneficial to use (and disable
Hi again,
some more (and partially general) thoughts ...
On Tue, Feb 15, 2011 at 12:40:31PM +0100, Christian Kuelker wrote:
On 02/15/2011 11:18 AM, Petter Reinholdtsen wrote:
I believe we should leave it unchanged unless we have a good reason to
change it.
Every change in an LDAP DIT
Hi Mike,
On Tue, Jan 11, 2011 at 11:20:15PM +0100, Mike Gabriel wrote:
On So 09 Jan 2011 10:29:52 CET Andreas B. Mundt wrote:
On Sat, Jan 08, 2011 at 11:41:42PM +0100, Mike Gabriel wrote:
[...]
Here is what I will do next:
1)
o I have a Debian server setup in the cloud for my
Hi Petter,
I don't want to discuss the technical points, but:
On Sun, Jan 09, 2011 at 10:40:18PM +0100, Petter Reinholdtsen wrote:
[Andreas B. Mundt]
So I conclude, that the current DNS setup, as a mixture of ldap
objects prepared for bind with extra attributes to make powerDNS
(sort
Hi Mike,
On Sat, Jan 08, 2011 at 11:41:42PM +0100, Mike Gabriel wrote:
[...]
Here is what I will do next:
1)
o I have a Debian server setup in the cloud for my ,,company''
with a working
NFSv4+Kerberos server setup
o I have installed a Debian SID in the cloud today that I will
Hi,
On Sun, Jan 09, 2011 at 12:15:34AM +0100, Mike Gabriel wrote:
I have a question about testing Debian Edu squeeze, esp. changes to
Debian Edu SVN that concern the installation process of Debian Edu.
Currently, if I want to test changes to Debian Edu, esp. the
installation process, I have
Hi again,
concerning the strange results which I accused to multiple A-records,
I found something new. I started to doubt our powerdns setup and
modifying it in ldap got annoying, so I switched on to bind instead[1].
After that, asking for DNS lookups changed. PowerDNS:
r...@tjener:~# host
Hi,
as we are just discussing future development, I would like to
understand the concept and the ideas behind LINBO and self-healing
workstations better.
From a quick search I found that it is used to quickly (re-)install
workstations that are spoiled.
Ok, now I know from my system here at the
Hi,
On Thu, Jan 06, 2011 at 10:13:12PM +0100, Mike Gabriel wrote:
Hi Andreas,
On Do 06 Jan 2011 12:12:35 CET Andreas B. Mundt wrote:
[...]
Each client needs a Kerberos setup as well. Is this also already
coded somewhere? I am sorry that I cannot remember exactly which of
the services
1 - 100 of 205 matches
Mail list logo