On Thu, Jun 27, 2013 at 09:28:39AM +0200, Petter Reinholdtsen wrote: > [Petter Reinholdtsen] > > We can disable autofs on diskless workstations and use sshfs > > instead. The question is, do we want to? > > I ran the file system test from <URL:https://github.com/gebi/fs-test>, > and got this result: > > Testing POSIX/Unix sematics on file system > info: testing symlink creation > info: testing hard link creation > error: link() succeeded but link count was not incremented > info: testing subdirectory creation > info: testing umask effect on file creation > error: Wrong file mode 664 when creating using mode 666 and umask 000 > info: sqlite worked > info: testing fcntl locking > Read-locking 1 byte from 1073741824 > Read-locking 510 byte from 1073741826 > Unlocking 1 byte from 1073741824 > Write-locking 1 byte from 1073741824 > Write-locking 510 byte from 1073741826 > Unlocking 2 byte from 1073741824 > > So umask and hardlink handling is broken. The umask problem will > affect file sharing using NFS on shared directories, while the > hardlink issue probably will not affect many programs. > > Disabling autofs will make it harder to make sure shared directories > are mounted on all clients too, so if we drop autofs on diskless > workstations, I guess the umask problem matter less than the lack of > easy sharing of files. :) I believe to have choice for diskless workstations would be good. (1) Run without any configuration: access home dirs via sshfs, use ldm to login. (2) Run like before in Squeeze: add them to LDAP, use NFS. This needs further configuration: kdm, gdm3 or lightdm must be used to log in, so DEFAULT_DISPLAY_MANAGER must be set (full path) in lts.conf, LDAP or kernel commandline (pxeboot). I modified /usr/share/ltsp/init-ltsp.d/60-edu-diskless-ws to have (1) available again. (Some other change too, due to new version of nsswitch.conf.) --------------------------------------------------------------- #!/bin/sh # For Debian Edu diskless workstations (i.e. ltsp fat clients). # As dns service is available, modify priority to make KERBEROS work.# if boolean_is_true "$LTSP_FATCLIENT"; then if [ -z "$DEFAULT_DISPLAY_MANAGER" ]; then # Disable autofs to let sshfs mount home dir. update-rc.d autofs disable 2 >/dev/null 2>&1 else sed -i '/automount/ s/files\ ldap/ldap/' /etc/nsswitch.conf sed -i s/files\ dns\ dns/dns\ files/ /etc/nsswitch.conf # Enable services, just to be sure. for service in autofs nfs-common nslcd nscd ; do update-rc.d $service enable 2 >/dev/null 2>&1 done fi # Fix proxy setting dhclient -nw fi --------------------------------------------------------------- LTSP configuration in LDAP would have to be changed too, cause lightdm is blacklisted by default in LTSP. Tested everything: The simple way to get the missing Kerberos TGT when running (1) does't work, cause the REALM isn't set right. The hard way (x-termial, kinit) works. I wonder, if I should commit this. Wolfgang
Attachment:
signature.asc
Description: Digital signature