Re: [lopsa-tech] Docker swarm and filesystems

2016-09-09 Thread Smith, David
I’m not using Docker, but I am using Gluster for my HA WordPress setup. Works well, handles every failure scenario I’ve come up with pretty gracefully. (Maybe I’m not imaginative enough…) Ping me off-list if you have any questions about Gluster specifically – it was actually pretty easy to set u

Re: [lopsa-tech] Ubuntu and AD

2016-08-09 Thread Smith, David
One word of warning about PBIS: It had (has?) a really fun bug with large domains. One of our domains has well over half a million objects, and at about 512k, it started using duplicate UIDs (so that multiple users had the same *nix UID). I think this is documented, but it's a small and easy-to-

Re: [lopsa-tech] Anyone use Cloudflare?

2016-04-15 Thread Smith, David
If you choose to use CloudFlare to front-end your Web site, be sure that you also change the back-end server’s IP address and/or firewall it so that only CloudFlare IPs can access it. Otherwise, if the attacker already knows your IP, they can just keep DDOS’ing it and you won’t really get much b

Re: [lopsa-tech] mail server help

2015-01-12 Thread Smith, David
According to this RHEL bug: https://bugzilla.redhat.com/show_bug.cgi?id=428996 Postfix 2.4 (and below, presumably, including 2.3 which was packaged with CentOS 5) used off_t for file offsets, which appears to be a 32-bit value on CentOS 5 32-bit. So that probably is the root cause. If you have t

Re: [lopsa-tech] mail server help

2015-01-12 Thread Smith, David
What file system are you using? The 2GB limit doesn't sound like anything related to Postfix (unless you set Postfix's mailbox_size_limit directive years ago then forgot about it). (There's also another discussion about whether it's worth the time and trouble to run your own mail server these d

Re: [lopsa-tech] Good wifi analyzer for iPad/iPhone?

2014-12-08 Thread Smith, David
Unfortunately, that's one of the tools that Apple won't allow in their App Store. (Their own AirPort configuration utility does have a basic scanner built-in, but that's actually a recent addition. It also is really "just" a list of APs and channels, and you probably want something a bit more po

Re: [lopsa-tech] "Upgrading" to Windows 7

2014-09-17 Thread Smith, David
to suggest otherwise. David Smith > On Sep 16, 2014, at 6:18 PM, "Mario Obejas" wrote: > > "Smith, David" writes: > >> Why are you upgrading to an OS that's already pretty close to >> end-of-support? > > I believe you are mistakenly equatin

Re: [lopsa-tech] "Upgrading" to Windows 7

2014-09-15 Thread Smith, David
Why are you upgrading to an OS that's already pretty close to end-of-support? If you're doing a clean OS install, might as well go right to Windows 8.1. Anecdotally, you'll even get better performance on lower-end hardware (like your Atom with only 4GB of RAM). Assuming you go with Windows 8, t

Re: [lopsa-tech] ssh authorization security model

2014-03-20 Thread Smith, David
At $WORK, for the servers I run, SSH is behind the VPN, and limited by external firewalls to a small subset of the network. (People that work with servers can SSH in, but random other people on campus can't.) For logging in, we've tied that to our Active Directory credentials, because we're a p

Re: [lopsa-tech] Protecting EC2 key pair

2014-02-18 Thread Smith, David
I think Yves meant, that there's no way to password-protect individual EC2 credentials, not SSH keys. The least-bad thing I've been able to think of, is making sure the credentials are rotated regularly, and stored in such a way that it's not too much of an inconvenience when you have to change

Re: [lopsa-tech] Managing centralized userids on machines that are not "local"

2014-02-07 Thread Smith, David
I'd suggest starting with trying to create a permanent tunnel (VPN or similar) back to your own network. That way, you continue to enjoy the benefits of centralized credential management. That said, I'm presently toying with a similar problem for spinning up servers in Amazon's cloud, and not s

Re: [lopsa-tech] Server for Hosting Virtual Machines

2013-08-23 Thread Smith, David
proper is GPL-licensed, the Oracle extension packs aren’t. That isn’t an issue for SCO guests, though, as there aren’t extensions for that OS.) David Smith From: Brandon Allbery [mailto:allber...@gmail.com] Sent: Friday, August 23, 2013 2:12 PM To: john boris Cc: Smith, David; tech@lists.lopsa.org

Re: [lopsa-tech] Server for Hosting Virtual Machines

2013-08-23 Thread Smith, David
You'll almost certainly be much happier getting VMware. The Essentials pack (three servers at 2 CPUs each) lists for $560, . There will be even less overhead than in Ubuntu, better support, probably better compatibility. You'll want at least 16GB of RAM, and when people realize how easy and chea

Re: [lopsa-tech] Migrating WinXP to a larger drive

2013-08-05 Thread Smith, David
Anything you've purchased from Apple, you can re-download. Further, any content you've synced to Apple with their iTunes Match service ($25/year, IIRC) can be re-downloaded. You have to contend with Apple's device limits, but they're not a problem for most users (five PCs max on a given Apple ID

Re: [lopsa-tech] What to use for 200TB of Dev/QA storage?

2013-01-25 Thread Smith, David
If you really want to get into DIY, this looks like a fun place to start: http://www.heartlandcomputers.com/chenbro-rm91250-black-extended-atx-ceb-rackmount-9u-chassis-with-1620w-psu/ It's just what it sounds like - an empty 9U rackmount chassis, with fifty drive bays. Add your own motherboard, f

Re: [lopsa-tech] Apple Airport Extreme?

2012-10-04 Thread Smith, David
I've got a soft spot for Mikrotik's RouterBoard hardware, mostly from a previous job where their hardware and software ran pretty much the whole network. A five-port router, Gigabit ports, including their software (a modified Linux with a decent Windows GUI), for sixty dollars, is a pretty good

Re: [lopsa-tech] Apple Airport Extreme?

2012-10-04 Thread Smith, David
If you want to keep your Apple devices around, you still can download the "old" version of the Apple AirPort Utility from Apple's Web site. The old and new versions can co-exist, at least on a Mac (haven't tested Windows). The older version is better in just about every way, save the UI. http:/

Re: [lopsa-tech] Email list to request ticket

2012-06-04 Thread Smith, David
I've seen several ticketing systems that do more-or-less that, usually with just Subject: munging. The initial email, before being distributed to the list, gets something like [Ticket 12345] prepended or appended to the subject, and usually an automatic header/footer warning users to leave the t

Re: [lopsa-tech] home wifi

2012-04-19 Thread Smith, David
> I don't have any Android devices with 5Ghz only my two Linux laptops. > > Otherwise, its WiFi Analyzer that I use to see what the 2.4Ghz networks are > like around me. Are the laptops' wireless cards mini-PCI? It's easy enough, and fairly cheap, to simply replace the built-in cards with

Re: [lopsa-tech] home wifi

2012-04-19 Thread Smith, David
> Wish there was a tool so I could see what the 5Ghz spectrum looks like around > here Ubiquiti Networks makes wi-fi radios with integrated antennas (among other wireless connectivity gear). Their NanoStation line is inexpensive but not cheap, and the radios include a built-in spectrum anal

Re: [lopsa-tech] MacOSX Lion through a proxy via Ethernet?

2012-03-22 Thread Smith, David
For that matter, it's not too hard to download the Lion installer and burn it to a DVD, which you can then use to wipe/install in the usual manner. David Smith From: tech-boun...@lists.lopsa.org [tech-boun...@lists.lopsa.org] on behalf of Billy Vierra [bvie...@sortatechie.com] Sent: Thur