Does anyone have a recommendation or experiences on SSO software
supporting SAML2 (preferably free/open source)? I'm currently looking
at either Shibboleth or OpenAM. I will be setting up both an IdP (for
testing), and an SP.
Any thoughts or recommendations are appreciated.
_
On Tue, Dec 14, 2010 at 9:39 AM, John BORIS wrote:
> I have been looking for an electronic organizer for my wife. I know
> there are a ton of smartphones out there but she will not use one of
> them and the data rates are something right now I don't want to deal
> with. I tried resurrecting my Pa
On Tue, Dec 14, 2010 at 10:36 AM, Alden, David
wrote:
>
> On Dec 14, 2010, at Dec 14, 10:18 AM, Yves Dorfsman wrote:
>
>> On 10-12-14 07:38 AM, John BORIS wrote:
>> If not, I am not sure how the following applies, but if you are, I think you
>> should keep smartphones into the equation, but don't
Yes, please do yourself, the next sysadmin, and the whole IT industry
a favor and use a server-centric distro. Fedora and Ubuntu are nice
for the desktop, but running a server is not just a simple matter of
getting the most recent packages.
Stability and long term support are keys to running a se
On Thu, Dec 16, 2010 at 1:12 PM, Yves Dorfsman wrote:
> On 10-12-16 09:32 AM, Matt Simmons wrote:
>> I'm against Fedora servers for a bunch of reasons, but the most
>> pressing is that their stability of package selection is not what I'd
>> call spectacular.
>>
>> It's much better, in my opinion,
On Thu, Dec 16, 2010 at 2:20 PM, Phil Pennock wrote:
> On 2010-12-16 at 13:28 -0500, Brian Mathis wrote:
>> P.S. If you have servers that can go down and it's not a big deal,
>> then you are wasting company resources and your time. Either the
>> business needs it or
I recently deployed Druva inSync which has the capability to do both
full image backups, as well as file backups. One of the main selling
points is it can work either over local LAN or the Internet, so it's
good for people who travel a lot. I am running the server on Linux
with the clients as Win
On Mon, Dec 20, 2010 at 8:57 AM, Doug Hughes wrote:
>
>> another is the write speed, flash is relatively slow to write to, I would
>> not expect it to have nearly the performance of battery-backed ram.
>
> Be careful with broad statements without qualification. All flash is not
> created equal.. F
On Tue, Jan 11, 2011 at 2:59 PM, Aaron McCaleb wrote:
> Background:
>
> One of my tasks this year, is to produce a recommendation of backup
> strategy for one department. This is for non-financial,
> non-correspondence data that should not be subject to SOX
> requirements, at least a
On Fri, Jan 14, 2011 at 12:11 PM, Roy McMorran wrote:
> Greetings,
> Apologies in advance if I'm covering old ground here. I'd swear I'd seen a
> similar discussion recently but I haven't been able to find it in the
> archives. Anyway...
>
> I'm seeking recommendations for x86 based servers. Hi
In that price range (actually, less) you can get a Lantronix Spider
Duo, which gives you IP-based remote KVM abilities. The power adapter
shown in the picture is optional.
http://www.lantronix.com/it-management/kvm-over-ip/securelinx-spiderduo.html
On Sat, Feb 5, 2011 at 2:42 PM, Edmund White w
On Mon, Feb 7, 2011 at 3:58 PM, Edward Ned Harvey wrote:
>> From: tech-boun...@lists.lopsa.org [mailto:tech-boun...@lists.lopsa.org]
>> On Behalf Of unix_fan
>>
>> Our Winders boxen use PGP Whole Disk encryption so we'd like to use it for
>> Linux
>> laptops as well.
>> Turns out the PGP implement
's easy to get into a certain type of thinking, especially since
we've had IPv4 for so long. Now it's time to change, and the changes
here are not even that drastic: "Use real firewall instead of
incorrectly relying on NAT". Big deal.
Also, you keep citing firewall misconfiguration as a reason to do
other things the wrong way. Once you bring that up, your argument
becomes invalid since you could say that about anything. "What do you
mean I don't have backups, I was *definitely* saving them to this ham
sandwich for years!"
// Brian Mathis
___
Tech mailing list
Tech@lists.lopsa.org
https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech
This list provided by the League of Professional System Administrators
http://lopsa.org/
h -c arcfour" ...rsyncopts...
- How do you know it's not the external interface? It's possible on
your other write tests you were hitting local cache.
Others seem to have fixated on using multiple rsyncs. The more I look
at it the more I d
On Wed, Mar 30, 2011 at 5:32 PM, Patrick Cable wrote:
> On Wed, Mar 30, 2011 at 5:24 PM, Brian
> Mathis wrote:
[...]
>> - How do you know it's not the external interface? It's possible on
>> your other write tests you were hitting local cache.
>
> My "te
remote network mounts (NFS and iSCSI), but as far as rsync is
concerned, they are local files.
However, you might get some mileage out of tuning the network buffers,
as mentioned above. Also, if you have the option to enable jumbo
frames on the network, that would probably also help. Jum
as worked well for me.
-☙ Brian Mathis ❧-
___
Tech mailing list
Tech@lists.lopsa.org
https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech
This list provided by the League of Professional System Administrators
http://lopsa.org/
your basic X setup (firewall, network, etc...) is working
correctly.
If you want remote desktop, look into NX or VNC.
-☙ Brian Mathis ❧-
___
Tech mailing list
Tech@lists.lopsa.org
https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech
This list provided by the League of Professional System Administrators
http://lopsa.org/
rror. It should not be
taking so long to install.
-☙ Brian Mathis ❧-
___
Tech mailing list
Tech@lists.lopsa.org
https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech
This list provided by the League of Professional System Administrators
http://lopsa.org/
Yeah, it's annoying with the toolbars, but you have full control to
not install them. You just need to pay attention when installing.
PDFCreator is the one I use as well.
-☙ Brian Mathis ❧-
On Sat, Jul 9, 2011 at 1:20 PM, Zack Williams wrote:
> On Jul 9, 2011, at 9:36 AM, unix_f
;s crashing. If it crashed
immediately then it was already far too close to thermal failure and
you need to address that. I'd remove the CPU coolers, clean them off,
then remount with some fresh thermal compound. Clean out any dust in
the fans, make sure all fans are working, etc...
st is really high, those people can be ignored.
The problem with too many lists is that you dilute the number of
people on each list so much that you don't reach a critical mass to
have useful discussions. I don't think any of these lists get enough
volume to warrant splitting them up
you put your effort into something like Puppet, at least you could
clone a RHEL6 clean install and then let Puppet configure the rest, so
you wouldn't necessarily need the kickstart.
❧ Brian Mathis
On Thu, Jun 28, 2012 at 12:05 PM, Mathew Snyder wrote:
> Our virtual platform is cur
We're using ESXi 4.1, and it does give the option for RHEL 6 when
creating VMs. I have not created any myself nor have I tried cloning,
but at least it's a start.
❧ Brian Mathis
On Thu, Jun 28, 2012 at 1:42 PM, Mathew Snyder wrote:
> 4.1 of vSphere or ESXi? Most of what I&#
gestions?
>
> -- Matt
I've heard good things about the FreeIPA project, and it's been added
as part of RHEL6. Haven't used it myself, but everyone says it's
pretty good.
❧ Brian Mathis
___
Tech mailing list
Tech@lists.l
ows multiple people to edit a document at the same time. It's
peer to peer, though I think it only works over the local network.
It's also open source.
❧ Brian Mathis
___
Tech mailing list
Tech@lists.lopsa.org
https://lists.lopsa.org/cg
steel frame of the 4 series, but any issues there
are purely cosmetic. A broken screen is something that needs to be fixed.
❧ Brian Mathis
On Wed, Apr 3, 2013 at 1:56 PM, john boris wrote:
> Okay here at $WORK they are going to iPhones. The default is to get the
> iPhone 4s 16gb. a 5
a tool like
this is used to verify that the changes were made correctly. You can't
rely on the same tool to do both jobs (execute and audit changes), if you
want to maximize the amount of confidence you put into your systems. It's
always better to have some kind of independent audit goin
at allows them
to completely dominate in the Enterprise market (and is what Puppet tries
to achieve now). A lot of the complex things you do with Puppet are
complete child's play with Group Policy.
❧ Brian Mathis
___
Tech mailing list
Tech@lists.lop
On Mon, Apr 22, 2013 at 4:50 PM, Mark McCullough wrote:
>
> On 2013 Apr 22, at 16:36 , Brian Mathis wrote:
> > Say what you will about them, but Microsoft realized this was a problem
> with INI files a long time ago and migrated to the registry. You may
> scoff, and one co
ith Dell R6xx and R7xx servers.
Also, I don't think a 17:1 ratio is really that crazy, given they are all
pretty small as far as RAM usage goes, but it would depend on the overall
CPU and I/O usage.
❧ Brian Mathis
___
Tech mailing list
Tech@lists
nters typically have surveillance on every row of racks, so they
can see if you do something to someone else's rack
I would think more about how an ATM is secured than systems in a data
center, since an ATM is in a similar environment as this.
❧ Brian Mathis
@orev
On Thu, Jun 19, 2014
on. It's relatively secure since you're querying a giant pool of
servers and it would be pretty amazing if all of them were compromised at
once to serve bad time.
❧ Brian Mathis
@orev
On Tue, Nov 18, 2014 at 4:55 PM, Matt Simmons wrote:
> As of a major version ago on ESXi, it wa
will be brought back in
line with the others. That doesn't mean they would all be correct, but
they would all be the same amount of wrong. That's probably a better
option in the event that all external sources are lost.
❧ Brian Mathis
@orev
On Tue, Nov 25, 2014 at 5:49 PM, Mathew Sny
spreads over the platter, so you would have a chance to make a
partial recovery before losing everything. My main fear would be that
since the drives are offline, any built-in error correction would not be
active so small issues that might have been recoverable may become
unrecoverable by the t
ssing your fingers and ignoring the generally well-accepted advice of
others.
~ Brian Mathis
@orev
On Mon, Apr 4, 2016 at 12:18 PM, Jeremy Charles wrote:
> I’m seeing all sort of documentation about how it’s not a great idea to
> use a VM as an NTP server due to how sketchy time track
36 matches
Mail list logo
