Changeset 1673 for branches/fc13-dev
- Timestamp:
- Sep 26, 2010, 3:17:59 PM (14 years ago)
- Location:
- branches/fc13-dev
- Files:
-
- 17 edited
- 3 copied
Legend:
- Unmodified
- Added
- Removed
-
branches/fc13-dev
- Property svn:mergeinfo changed
/trunk (added) merged: 1639-1643,1648,1651-1652,1654-1657,1667,1670-1671
- Property svn:mergeinfo changed
-
branches/fc13-dev/locker/bin
- Property svn:mergeinfo changed (with no actual effect on merging)
-
branches/fc13-dev/locker/bin/scripts-remove
- Property svn:mergeinfo changed (with no actual effect on merging)
-
branches/fc13-dev/locker/bin/signup-minimal
- Property svn:mergeinfo changed (with no actual effect on merging)
-
branches/fc13-dev/locker/bin/signup-sql
- Property svn:mergeinfo changed (with no actual effect on merging)
-
branches/fc13-dev/locker/deploy/bin
- Property svn:mergeinfo changed (with no actual effect on merging)
-
branches/fc13-dev/locker/deploy/bin/onathena
- Property svn:mergeinfo deleted
-
branches/fc13-dev/locker/deploy/bin/trac
- Property svn:mergeinfo changed (with no actual effect on merging)
-
branches/fc13-dev/locker/sql/bin/save-password
- Property svn:mergeinfo changed (with no actual effect on merging)
-
branches/fc13-dev/server/common/oursrc/execsys/execsys-binfmt
- Property svn:mergeinfo changed (with no actual effect on merging)
-
branches/fc13-dev/server/common/oursrc/php_scripts/php_scripts-config.m4
- Property svn:mergeinfo changed (with no actual effect on merging)
-
branches/fc13-dev/server/doc/install-ldap
r1672 r1673 6 6 root# env NSS_NONLOCAL_IGNORE=1 useradd -r -d /var/lib/dirsrv fedora-ds 7 7 - root# yum install -y policycoreutils-python 8 - Temporarily move away the existing slapd-scripts folder 9 root# mv /etc/dirsrv/slapd-scripts{,.bak} 8 10 - root# /usr/sbin/setup-ds.pl 9 11 - Choose a typical install … … 14 16 - Input directory manager password 15 17 (this can be found in ~/.ldapvirc) 16 [XXX: Got error: sh: semanage: command not found; turns out this is in 17 policycoreutils-python. Don't know if this will cause problems.] 18 - Move the schema back 19 root# cp -R /etc/dirsrv/slapd-scripts.bak/{.svn,*} /etc/dirsrv/slapd-scripts 20 root# rm -Rf /etc/dirsrv/slapd-scripts.bak 18 21 - yum install ldapvi 19 22 - Check if dirsrv starts: /sbin/service dirsrv start 23 then turn it back off: service dirsrv stop 20 24 - Apply the following configuration changes. If you're editing 21 25 dse.ldif, you don't want dirsrv to be on, otherwise it will … … 41 45 nsSaslMapFilterTemplate: (objectClass=posixAccount) 42 46 43 - /sbin/service dirsrv stop44 - Add the scripts schemas to /var/lib/dirsrv/slapd-scripts [XXX: I don't45 know how to do this, but placing them in /etc might be sufficient?]46 47 - Put LDAP keytab (ldap/hostname.mit.edu) in /etc/dirsrv/keytab. Make 47 48 sure you chown/chgrp it to be readable by fedora-ds 48 49 - Uncomment and modify in /etc/sysconfig/dirsrv: KRB5_KTNAME=/etc/dirsrv/keytab ; export KRB5_KTNAME 49 - mkdir -p /var/run/dirsrv50 50 - chown fedora-ds:fedora-ds /var/run/dirsrv 51 51 - chmod 755 /var/run/dirsrv 52 - /sbin/service dirsrv restart53 - Use ldapvi -b cn=config to add these indexes :52 - /sbin/service dirsrv start 53 - Use ldapvi -b cn=config to add these indexes (8 of them): 54 54 55 55 add cn=apacheServerName, cn=index, cn=userRoot, cn=ldbm database, cn=plugins, cn=config … … 191 191 nsDS5ReplicaBindDN: uid=ldap/whole-enchilada.mit.edu,ou=People,dc=scripts,dc=mit,dc=edu 192 192 nsDS5ReplicaBindDN: uid=ldap/real-mccoy.mit.edu,ou=People,dc=scripts,dc=mit,dc=edu 193 nsDS5ReplicaBindDN: uid=ldap/better-mousetrap.mit.edu,ou=People,dc=scripts,dc=mit,dc=edu 194 nsDS5ReplicaBindDN: uid=ldap/old-faithful.mit.edu,ou=People,dc=scripts,dc=mit,dc=edu 193 195 # ADD SERVERS HERE AS YOU ADD NEW SERVERS 194 196 nsds5ReplicaPurgeDelay: 604800 … … 200 202 weren't we going to replicate from only one server? That is 201 203 correct, however, simply binding won't mean we will receive 202 updates; we have to setup the $MASTER to send data $S ALVE.204 updates; we have to setup the $MASTER to send data $SLAVE. 203 205 204 206 3. Although we allowed those uids to bind, that user information … … 240 242 nsDS5ReplicaTimeout: 120 241 243 242 4. Run the replication. (you could fold this into the previous step) 244 4. Reboot the server `service dirsrv restart`, then run the 245 replication. (Don't fold this into the previous step! You might 246 nuke your database!) 243 247 244 248 # under cn="GSSAPI Replication to $SLAVE", cn=replica, cn="dc=scripts,dc=mit,dc=edu", cn=mapping tree, cn=config -
branches/fc13-dev/server/fedora/config/etc/hosts
r1267 r1673 10 10 18.181.0.229 scripts-test.mit.edu scripts-test 11 11 12 18.181.0.57 better-mousetrap.mit.edu better-mousetrap scripts1.mit.edu scripts1 12 13 18.181.0.53 old-faithful.mit.edu old-faithful scripts2.mit.edu scripts2 13 18.181.0.57 better-mousetrap.mit.edu better-mousetrap scripts1.mit.edu scripts114 14 18.181.0.167 bees-knees.mit.edu bees-knees sx-blade-4.mit.edu sx-blade-4 scripts3.mit.edu scripts3 15 15 18.181.0.228 cats-whiskers.mit.edu cats-whiskers scripts4.mit.edu scripts4 16 18.181.0.236 whole-enchilada.mit.edu whole-enchilada scripts5.mit.edu scripts5 16 17 18.181.0.237 pancake-bunny.mit.edu pancake-bunny scripts6.mit.edu scripts6 17 18 18.181.0.234 busy-beaver.mit.edu busy-beaver scripts7.mit.edu scripts7 18 19 18.181.0.235 real-mccoy.mit.edu real-mccoy scripts8.mit.edu scripts8 19 20 21 172.21.0.57 better-mousetrap.mit.edu 20 22 172.21.0.53 old-faithful.mit.edu 21 172.21.0.57 better-mousetrap.mit.edu22 23 172.21.0.167 bees-knees.mit.edu 23 24 172.21.0.228 cats-whiskers.mit.edu 25 172.21.0.236 whole-enchilada.mit.edu 24 26 172.21.0.237 pancake-bunny.mit.edu 25 27 172.21.0.234 busy-beaver.mit.edu -
branches/fc13-dev/server/fedora/config/etc/nagios/check_ldap_mmr.real
r1579 r1673 6 6 use Net::LDAP; 7 7 use strict; 8 9 my $nl = $ENV{'USE_NEWLINES'} ? "\n" : ""; 10 my $tab = $ENV{'USE_NEWLINES'} ? " " : ""; 8 11 9 12 # Nagios codes … … 25 28 my $replicaErrors = 0; 26 29 my $conflictErrors = 0; 27 my $errorstring = "Replication error(s): ";30 my $errorstring = "Replication error(s): $nl"; 28 31 foreach my $entr ( @entries ) { 29 32 my $servername=$entr->get_value($server); … … 35 38 $serverlaststart =~ s/(....)(..)(..)(..)(..)(..)./$1-$2-$3\ $4:$5:$6/; 36 39 $serverlastend =~ s/(....)(..)(..)(..)(..)(..)./$1-$2-$3\ $4:$5:$6/; 37 print "Replication to $servername last operation $serverlaststart ";38 print "Status: $serverstatus.";40 print "Replication to $servername last operation $serverlaststart $nl"; 41 print $tab . "Status: $serverstatus. $nl"; 39 42 if ($statuscode) { 40 43 $replicaErrors++; … … 42 45 } 43 46 } 47 print "$nl"; 44 48 45 49 $result=LDAPSearch($ldap,"nsds5ReplConflict=*",["nsds5ReplConflict"],$replicatedBase); … … 48 52 my $conflictingDN=$entr->dn(); 49 53 my $conflictDesc=$entr->get_value("nsds5ReplConflict"); 50 print "Conflict found for DN $conflictingDN ";51 print "Reason: $conflictDesc.";54 print "Conflict found for DN $conflictingDN $nl"; 55 print $tab . "Reason: $conflictDesc. $nl"; 52 56 $conflictErrors++; 53 57 $errorstring = $errorstring . $conflictDesc . ", "; 54 58 } 59 print "$nl"; 55 60 56 61 if ($conflictErrors > 0) { -
branches/fc13-dev/server/fedora/config/etc/sudoers
r1379 r1673 56 56 Defaults env_keep += "LC_MONETARY LC_NAME LC_NUMERIC LC_PAPER LC_TELEPHONE" 57 57 Defaults env_keep += "LC_TIME LC_ALL LANGUAGE LINGUAS _XKB_CHARSET XAUTHORITY" 58 Defaults env_keep += "USE_NEWLINES" 58 59 59 60 ## Next comes the main part: which users can run what software on -
branches/fc13-dev/server/fedora/config/etc/sysconfig/network-scripts/route-eth1
r1267 r1673 2 2 18.181.0.56 via 172.21.0.56 3 3 18.181.0.52 via 172.21.0.52 4 18.181.0.57 via 172.21.0.57 4 5 18.181.0.53 via 172.21.0.53 5 18.181.0.57 via 172.21.0.576 6 18.181.0.167 via 172.21.0.167 7 7 18.181.0.228 via 172.21.0.228 8 18.181.0.236 via 172.21.0.236 9 18.181.0.237 via 172.21.0.237 8 10 18.181.0.234 via 172.21.0.234 9 11 18.181.0.235 via 172.21.0.235 10 18.181.0.237 via 172.21.0.237 -
branches/fc13-dev/server/fedora/config/etc/syslog-ng/d_zroot.pl
r1653 r1673 101 101 } elsif ($message =~ m|^Postponed keyboard-interactive|) { 102 102 } elsif ($message =~ m|^Failed keyboard-interactive/pam|) { 103 } elsif ($message =~ m|^Did not receive identification string from|) { 103 104 } elsif ($message =~ m|^fatal: Read from socket failed: Connection reset by peer$|) { 104 105 } elsif ($message =~ m|^reverse mapping checking getaddrinfo|) {
Note: See TracChangeset
for help on using the changeset viewer.