[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Help needed with server setup at work



On Mon, 2007-04-23 at 22:58 +0200, Rico Secada wrote:
> On Mon, 23 Apr 2007 16:35:04 -0400
> Greg Folkert <greg@gregfolkert.net> wrote:
> > On Mon, 2007-04-23 at 22:22 +0200, Rico Secada wrote:
[snip for brevity]
> > 
> > Personally, I'd use a cluster/distributed filesystem with back links or
> > references etc. But then... I'll have to look into that... but later, my
> > Step father just called and said he bought a new "hard-drive"... yeah
> > could be anything from an external to a new machine to an internal.
> > 
> > But then I usually just have ONE HUGE-E-MONGOUS nfs/smb/cifs/afs/other
> > file server doing the work, depending on the traffic, I used bonding of
> > NICs.
> > 
> > You could always setup an ssh forwarding service for various ports...
> > 10021 for server A, 10022 for server B, 10023 for server C all using the
> > same IP. IPtables or OpenBSD's PF works wonderful for that.
> > 
> > Then all your people just need to know the "name" and the port.
> 
> Thank you very much Greg!! Your help has been very valuable!

You might consider, if you feel you must jail your users something I
just cam across:

        http://paradigma.pt/~gngs/sshjail/downloads/

It is a fine example of open source doing what it does best.

Here is the article which I just read about it:

        http://www.linux.com/article.pl?sid=07/04/11/211209

Remember, once you jail people, they cannot do anything else. It is upto
you to fix any problems that might occur in this kind of an environment.

Cheers.
-- 
greg, greg@gregfolkert.net

I don't mow my lawn anymore. I just intimidate it into not growing.
Though it is quite hard to intimidate grass, it has been around a long time
and has quite an attitude about it.

Attachment: signature.asc
Description: This is a digitally signed message part


Reply to: