[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [school-discuss] linuxconf

To: schoolforge-discuss@xxxxxxxxxxxxxxx
Subject: Re: [school-discuss] linuxconf
From: Michael Shigorin <mike@xxxxxxxxxxx>
Date: Wed, 17 Oct 2007 18:01:59 +0300
Delivered-to: archiver@xxxxxxxx
Delivered-to: schoolforge-discuss-outgoing@xxxxxxxx
Delivered-to: schoolforge-discuss@xxxxxxxx
Delivery-date: Wed, 17 Oct 2007 11:02:09 -0400
In-reply-to: <1192627551.47160d5f55ac3@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Mail-followup-to: schoolforge-discuss@xxxxxxxxxxxxxxx
References: <20071011083213.GQ22309@xxxxxxxxxxx> <d8b13ca00710111932r70bd740dj8f3b05356e2dc310@xxxxxxxxxxxxxx> <20071016133026.GE32403@xxxxxxxxxxx> <4714E090.6010001@xxxxxxxxx> <1192627551.47160d5f55ac3@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: schoolforge-discuss@xxxxxxxxxxxxxxx
Sender: owner-schoolforge-discuss@xxxxxxxxxxxxxxx
User-agent: Mutt/1.4.2.1i

On Wed, Oct 17, 2007 at 06:25:51AM -0700, marilyn@xxxxxxxxxxxxxxxxxx wrote:
> Here is a question for the system administrator folks.  

Well, some of us might advise you on starting new conversation by
composing a brand new message, not replying to another thread and
changing subject: there are message headers that will link them
together no matter what.

> Back in the days when I used Red Hat and Mandrake, I used a
> tool called linuxconf that was just great for my simple needs.

Nasty "tool", I've removed it off some RH5.1 (or 4.x?) as soon
as it gave me no choice but to either accept some unreviewable
changes to sendmail.cf or do something else but not let things be!

> Apache is installed and running, but I want to setup my
> webmastering students to access their own directories through
> ftp and ssh.  Ssh works, but not ftp.

FTP for webmastering is bad habit albeit very popular in the
wild.  In fact, it's sort of deadlock: those coming for hosting
expect FTP even if they'd prefer something better, and those
providing hosting have to provide FTP even if they'd eagerly
switch to something better.

At our free hosting for free software projects, we provide
rsync-over-ssh as r/w transport and consider any ftp to be
readonly anonymous access.

> Also, I want the kids to be able to run programs through ssh.
> Pine works fine, but it gives an xserver error when I try to
> run a GUI.

ssh -X host proggie
(for newer openssh, ssh -Y to retain complete X11 protocol,
not just screened/secured parts)

> Is there some tool like linuxconf for Debian?

I hope linuxconf is gone for good everywhere.

Regarding webmin, it's more competent indeed but still a security
nightmare (better than sendmail as well but having lots of perl
code, modules and interpreter running with root privileges makes
any of my security-conscious colleagues cringe).  Unfortunately
there's no way with it to do privilege separation with it AFAIK.

Yep, I know no sane remote administration UI that would do that.
There's work on ALTerator to bring it there but that's really 
not a trivial task as one might guess ;)

So over LAN, it's all no real problem usually; but still not 
a good habit, just like auth r/w FTP.

-- 
 ---- WBR, Michael Shigorin <mike@xxxxxxxxxxx>
  ------ Linux.Kiev http://www.linux.kiev.ua/
 ----       Oct 26--27, Kiev, Ukraine:
--       http://conference.osdn.org.ua

Follow-Ups:
- Re: [school-discuss] linuxconf
  - From:

References:
- [school-discuss] I: ALT Linux LTSP5 server installer beta available
  - From: Michael Shigorin
- Re: [school-discuss] I: ALT Linux LTSP5 server installer beta available
  - From: Justin
- Re: [school-discuss] I: ALT Linux LTSP5 server installer beta available
  - From: Michael Shigorin
- Re: [school-discuss] I: ALT Linux LTSP5 server installer beta available
  - From: Justin
- [school-discuss] linuxconf
  - From:

Prev by Author: Re: [school-discuss] I: ALT Linux LTSP5 server installer beta available
Next by Author: [school-discuss] rsync vs ftp (was: linuxconf)
Previous by thread: Re: [school-discuss] linuxconf
Next by thread: Re: [school-discuss] linuxconf
Index(es):
- Author
- Thread