OIT-ISO-SHS and have made a change at the OU=OIT level that should make things less complicated for all our various OU admins.

I've packaged the 32 and 64 bit ActivePerl distributions for Windows, version 5.10.1.1006.

To have it installed via GPO from the WolfTech domain, add the computer or groups of computers to the group FW-OIT-ActivePerl-5.10.1.1006, which you'll find in OIT/Software Packages/OIT Software

Folks,

The next Camus Linux Services meeting is posted.

http://sysnews.ncsu.edu/news/4ad4989f

We'll be talking primarily about configuration management and file systems.  Ye OIT'ers are of course welcome and encuraged to come.

It would be uber sweet if someone would volunteer to take notes.

It's getting time to talk about what needs to happen for a clean and successful decommissioning of the Unity domain,  I'd like to start by identifying the stakeholders and calling them together to discuss their transistion needs and priorities.

Here's the services so far identified

In working with group policies, I've run into some frustrating test conditions where the policies I set just weren't getting set on the target computers.

Checking into the event log, the issue appears to be that the clock on my vmware machine was too far out of sync with the time on the WolfTech domain controllers for a session to be established, and so the workstation service principal couldn't log in and get the list of gpo's it should apply.

Be careful what you wish for!

E-mail notifications have been added to this site, as some folks were missing them from our earlier blogs/drupal sites.  You'll see a link for "subscriptions" at the bottom of most content.

I'm working to clean up and standardize our OU=OIT in the WolfTech active directory.

I've created under "Management Objects" a "People Groups" container, for holding groups representing teams or other assemblies of humans or human analogs.

Microsoft's Internet Information Server (IIS) uses a local computer account, IUSR_servername to provide access to the filesystem and other resources for anonymous web users.  We've had some problems getting the permissions correct for this acount.

I'd like to propose the following scheme, based on the recommendations from Microsoft's IIS 6.0 Security Best Practices

A question commonly asked, how does one best edit /etc/sysconfig/iptables during a Web-Kickstart %post?

You could include the entire file in the %post section of your kickstart.  However, what about the default ports added for AFS, or another use file that may wish to slightly alter the host's firewall?

My friends, sed is the answer.  The RHEL or Realm Linux 5 firewalls include a 'RH-Firewall-1-INPUT' chain where the Red Hat customizations live, so lets edit that: