Changeset 1673


Ignore:
Timestamp:
Sep 26, 2010, 3:17:59 PM (12 years ago)
Author:
ezyang
Message:
Merge in changes from trunk.
Location:
branches/fc13-dev
Files:
17 edited
3 copied

Legend:

Unmodified
Added
Removed
  • branches/fc13-dev

  • branches/fc13-dev/locker/bin

    • Property svn:mergeinfo changed (with no actual effect on merging)
  • branches/fc13-dev/locker/bin/scripts-remove

    • Property svn:mergeinfo changed (with no actual effect on merging)
  • branches/fc13-dev/locker/bin/signup-minimal

    • Property svn:mergeinfo changed (with no actual effect on merging)
  • branches/fc13-dev/locker/bin/signup-sql

    • Property svn:mergeinfo changed (with no actual effect on merging)
  • branches/fc13-dev/locker/deploy/bin

    • Property svn:mergeinfo changed (with no actual effect on merging)
  • branches/fc13-dev/locker/deploy/bin/onathena

    • Property svn:mergeinfo deleted
  • branches/fc13-dev/locker/deploy/bin/trac

    • Property svn:mergeinfo changed (with no actual effect on merging)
  • branches/fc13-dev/locker/sql/bin/save-password

    • Property svn:mergeinfo changed (with no actual effect on merging)
  • branches/fc13-dev/server/common/oursrc/execsys/execsys-binfmt

    • Property svn:mergeinfo changed (with no actual effect on merging)
  • branches/fc13-dev/server/common/oursrc/php_scripts/php_scripts-config.m4

    • Property svn:mergeinfo changed (with no actual effect on merging)
  • branches/fc13-dev/server/doc/install-ldap

    r1672 r1673  
    66  root# env NSS_NONLOCAL_IGNORE=1 useradd -r -d /var/lib/dirsrv fedora-ds
    77- root# yum install -y policycoreutils-python
     8- Temporarily move away the existing slapd-scripts folder
     9  root# mv /etc/dirsrv/slapd-scripts{,.bak}
    810- root# /usr/sbin/setup-ds.pl
    911    - Choose a typical install
     
    1416    - Input directory manager password
    1517      (this can be found in  ~/.ldapvirc)
    16         [XXX: Got error: sh: semanage: command not found; turns out this is in
    17         policycoreutils-python.  Don't know if this will cause problems.]
     18- Move the schema back
     19  root# cp -R /etc/dirsrv/slapd-scripts.bak/{.svn,*} /etc/dirsrv/slapd-scripts
     20  root# rm -Rf /etc/dirsrv/slapd-scripts.bak
    1821- yum install ldapvi
    1922- Check if dirsrv starts: /sbin/service dirsrv start
     23  then turn it back off: service dirsrv stop
    2024- Apply the following configuration changes.  If you're editing
    2125  dse.ldif, you don't want dirsrv to be on, otherwise it will
     
    4145nsSaslMapFilterTemplate: (objectClass=posixAccount)
    4246
    43 - /sbin/service dirsrv stop
    44 - Add the scripts schemas to /var/lib/dirsrv/slapd-scripts [XXX: I don't
    45   know how to do this, but placing them in /etc might be sufficient?]
    4647- Put LDAP keytab (ldap/hostname.mit.edu) in /etc/dirsrv/keytab.  Make
    4748  sure you chown/chgrp it to be readable by fedora-ds
    4849- Uncomment and modify in /etc/sysconfig/dirsrv: KRB5_KTNAME=/etc/dirsrv/keytab ; export KRB5_KTNAME
    49 - mkdir -p /var/run/dirsrv
    5050- chown fedora-ds:fedora-ds /var/run/dirsrv
    5151- chmod 755 /var/run/dirsrv
    52 - /sbin/service dirsrv restart
    53 - Use ldapvi -b cn=config to add these indexes:
     52- /sbin/service dirsrv start
     53- Use ldapvi -b cn=config to add these indexes (8 of them):
    5454
    5555add cn=apacheServerName, cn=index, cn=userRoot, cn=ldbm database, cn=plugins, cn=config
     
    191191nsDS5ReplicaBindDN: uid=ldap/whole-enchilada.mit.edu,ou=People,dc=scripts,dc=mit,dc=edu
    192192nsDS5ReplicaBindDN: uid=ldap/real-mccoy.mit.edu,ou=People,dc=scripts,dc=mit,dc=edu
     193nsDS5ReplicaBindDN: uid=ldap/better-mousetrap.mit.edu,ou=People,dc=scripts,dc=mit,dc=edu
     194nsDS5ReplicaBindDN: uid=ldap/old-faithful.mit.edu,ou=People,dc=scripts,dc=mit,dc=edu
    193195# ADD SERVERS HERE AS YOU ADD NEW SERVERS
    194196nsds5ReplicaPurgeDelay: 604800
     
    200202        weren't we going to replicate from only one server?  That is
    201203        correct, however, simply binding won't mean we will receive
    202         updates; we have to setup the $MASTER to send data $SALVE.
     204        updates; we have to setup the $MASTER to send data $SLAVE.
    203205
    204206    3. Although we allowed those uids to bind, that user information
     
    240242nsDS5ReplicaTimeout: 120
    241243
    242     4. Run the replication. (you could fold this into the previous step)
     244    4. Reboot the server `service dirsrv restart`, then run the
     245    replication. (Don't fold this into the previous step!  You might
     246    nuke your database!)
    243247
    244248# under cn="GSSAPI Replication to $SLAVE", cn=replica, cn="dc=scripts,dc=mit,dc=edu", cn=mapping tree, cn=config
  • branches/fc13-dev/server/fedora/config/etc/hosts

    r1267 r1673  
    101018.181.0.229    scripts-test.mit.edu scripts-test
    1111
     1218.181.0.57     better-mousetrap.mit.edu better-mousetrap scripts1.mit.edu scripts1
    121318.181.0.53     old-faithful.mit.edu old-faithful scripts2.mit.edu scripts2
    13 18.181.0.57     better-mousetrap.mit.edu better-mousetrap scripts1.mit.edu scripts1
    141418.181.0.167    bees-knees.mit.edu bees-knees sx-blade-4.mit.edu sx-blade-4 scripts3.mit.edu scripts3
    151518.181.0.228    cats-whiskers.mit.edu cats-whiskers scripts4.mit.edu scripts4
     1618.181.0.236    whole-enchilada.mit.edu whole-enchilada scripts5.mit.edu scripts5
    161718.181.0.237    pancake-bunny.mit.edu pancake-bunny scripts6.mit.edu scripts6
    171818.181.0.234    busy-beaver.mit.edu busy-beaver scripts7.mit.edu scripts7
    181918.181.0.235    real-mccoy.mit.edu real-mccoy scripts8.mit.edu scripts8
    1920
     21172.21.0.57     better-mousetrap.mit.edu
    2022172.21.0.53     old-faithful.mit.edu
    21 172.21.0.57     better-mousetrap.mit.edu
    2223172.21.0.167    bees-knees.mit.edu
    2324172.21.0.228    cats-whiskers.mit.edu
     25172.21.0.236    whole-enchilada.mit.edu
    2426172.21.0.237    pancake-bunny.mit.edu
    2527172.21.0.234    busy-beaver.mit.edu
  • branches/fc13-dev/server/fedora/config/etc/nagios/check_ldap_mmr.real

    r1579 r1673  
    66use Net::LDAP;
    77use strict;
     8
     9my $nl  = $ENV{'USE_NEWLINES'} ? "\n" : "";
     10my $tab = $ENV{'USE_NEWLINES'} ? "  " : "";
    811
    912# Nagios codes
     
    2528my $replicaErrors = 0;
    2629my $conflictErrors = 0;
    27 my $errorstring = "Replication error(s): ";
     30my $errorstring = "Replication error(s): $nl";
    2831foreach my $entr ( @entries ) {
    2932    my $servername=$entr->get_value($server);
     
    3538    $serverlaststart =~ s/(....)(..)(..)(..)(..)(..)./$1-$2-$3\ $4:$5:$6/;
    3639    $serverlastend =~ s/(....)(..)(..)(..)(..)(..)./$1-$2-$3\ $4:$5:$6/;
    37     print "Replication to $servername last operation $serverlaststart ";
    38     print "Status: $serverstatus.     ";
     40    print "Replication to $servername last operation $serverlaststart $nl";
     41    print $tab . "Status: $serverstatus.     $nl";
    3942    if ($statuscode) {
    4043        $replicaErrors++;
     
    4245    }
    4346}
     47print "$nl";
    4448
    4549$result=LDAPSearch($ldap,"nsds5ReplConflict=*",["nsds5ReplConflict"],$replicatedBase);
     
    4852    my $conflictingDN=$entr->dn();
    4953    my $conflictDesc=$entr->get_value("nsds5ReplConflict");
    50     print "Conflict found for DN $conflictingDN ";
    51     print "Reason: $conflictDesc.     ";
     54    print "Conflict found for DN $conflictingDN $nl";
     55    print $tab . "Reason: $conflictDesc.     $nl";
    5256    $conflictErrors++;
    5357    $errorstring = $errorstring . $conflictDesc . ", ";
    5458}
     59print "$nl";
    5560
    5661if ($conflictErrors > 0) {
  • branches/fc13-dev/server/fedora/config/etc/sudoers

    r1379 r1673  
    5656Defaults    env_keep += "LC_MONETARY LC_NAME LC_NUMERIC LC_PAPER LC_TELEPHONE"
    5757Defaults    env_keep += "LC_TIME LC_ALL LANGUAGE LINGUAS _XKB_CHARSET XAUTHORITY"
     58Defaults    env_keep += "USE_NEWLINES"
    5859
    5960## Next comes the main part: which users can run what software on
  • branches/fc13-dev/server/fedora/config/etc/sysconfig/network-scripts/route-eth1

    r1267 r1673  
    2218.181.0.56 via 172.21.0.56
    3318.181.0.52 via 172.21.0.52
     418.181.0.57 via 172.21.0.57
    4518.181.0.53 via 172.21.0.53
    5 18.181.0.57 via 172.21.0.57
    6618.181.0.167 via 172.21.0.167
    7718.181.0.228 via 172.21.0.228
     818.181.0.236 via 172.21.0.236
     918.181.0.237 via 172.21.0.237
    81018.181.0.234 via 172.21.0.234
    91118.181.0.235 via 172.21.0.235
    10 18.181.0.237 via 172.21.0.237
  • branches/fc13-dev/server/fedora/config/etc/syslog-ng/d_zroot.pl

    r1653 r1673  
    101101        } elsif ($message =~ m|^Postponed keyboard-interactive|) {
    102102        } elsif ($message =~ m|^Failed keyboard-interactive/pam|) {
     103        } elsif ($message =~ m|^Did not receive identification string from|) {
    103104        } elsif ($message =~ m|^fatal: Read from socket failed: Connection reset by peer$|) {
    104105        } elsif ($message =~ m|^reverse mapping checking getaddrinfo|) {
Note: See TracChangeset for help on using the changeset viewer.