These have been up for awhile but I found myself pointing them out to someone earlier today and so thought I’d post a link:
krypted September 30th, 2008
Posted In: Final Cut Server
Final Cut Server, Mac OS X
In Windows Server 2008 you can use the Server Manager application to enable RIS (part of Windows Deployment Services, WDS). To do so, open Server Manager and click on Roles in the left column. Then click on Next and read the Introduction to WDS items. It’s worth noting that you can setup your server as a Transport Server in WDS, which is a bit like Multicast clustering (eg – multicast ASR imaging for the Mac). It’s also worth noting that a Deployment Server will use parts of the Transport Server to do its job so you’ll need to install both. Once you’re satisfied with your selection, click Next and then click on the Install button to install the services.
Prior to installing WDS it would be a good idea to install DHCP, DNS and Active Directory, or at minimum verify their operations.
krypted September 29th, 2008
Posted In: Active Directory, Mass Deployment, Windows Server
Microsoft Windows Server 2008, RIS, WDS, Windows Server 2008
After taking the game into OT last year, the Dawgs simply couldn’t stop the Tide in the first half. We cleanly won the second half, but just couldn’t overcome the hole we dug ourselves into early in the game. They beat us at the line. Clearly the O-Line needs work. You see, football is a game often won or lost at the line of scrimmage. This sets up the running game by providing blocks and therefore running lanes or it provides the quarterback with the time needed to make passes. The Alabama line won this game. All the rest of the team had to do was basically not screw up…
But as a consolation, at least UGA looked good in black!
krypted September 28th, 2008
Posted In: Football
Alabama, Football, UGA
dsconfigad did not support signing of LDAP packets in 10.4.x. However, this was an upgrade that was introduced in the 10.5 version of the AD Plug-in. Provided that your Active Directory environment uses LDAP signing, a standard policy with DCs, you can mirror your settings on the DC in dsconfigad by using the -packetsigning option followed by either an allow, disable or require variable. To force LDAP signing, just run the following command:
dsconfigad -packetsigning required
To then disable signing if your environment doesn’t support it use the following command:
dsconfigad -packetsigning disable
The default variable is allow, which will use LDAP signing when possible.
krypted September 27th, 2008
Posted In: Active Directory, Mac OS X, Mac OS X Server, Mac Security, Mass Deployment, Windows Server
Command line, dsconfigad, Mac OS X, Mac Security, packet signing
Today I received a copy of Mac OS X for Unix Geeks from O’Reilly, for which I was the technical editor on. Great read, especially for the *nix to Mac switcher. Check it out here:
Big pat on the back to Brian Jepson, Ernest Rothman and Rich Rosen for releasing a great new version of their book!
krypted September 26th, 2008
Posted In: Articles and Books, Mac OS X
Books, Command line, command line tools, Mac OS X, Mac OS X for Unix Geeks, O'Reilly
I recently read an article that Solaris is a dead OS (or will be rather shortly). I beg to differ, proveded the hardware support is there. Solaris can still multithread better than anyone. Solaris’ ZFS is still the most superior file system available (although before the ReiserFS founder got put in prison for wasting his wife it looked poised for greatness) and the Sun hardware is still best of breed. Sun as a company is also going to be building tighter integration into MySQL, which should help boost numbers.
But the pony-tail-laden chief of Sun definitely has his work cut out for him. There are certain acquisitions that have not been smooth (cough – tape libraries) and still need to get finished up. There’s also the need to find a really good synergy between MySQL and Sun, where the Open Source community can continue to love and leverage MySQL without being forced into Sun products, but still provide a value-add from using Sun products. Hard thing to do. There’s also Java and all the services surrounding it and of course OpenSolaris, which is picking up new converts all the time – but which still lacks the trend setting aspects of Fedora and Ubuntu.
To me it seems that what Sun really needs is an identity. It really seems that there’s a lack of a cohesive vision that encompasses all of the products they have. Take NetApp as an example. They’re a storage vendor. Same with EMC – although EMC has purchased a lot of other companies, those purchases are geared towards driving storage sales. Sun just seems to be blowing around in the winds of a certain economy and IT market, both should be rectified if they are to retain their position in the IT community.
In short, Sun needs to circle the wagons, perhaps divest assets that do not work with the core and reinvest heavily into the core with the increased cash position that would provide. Sun has some of the most talented engineers in the world. They need to retain them and allow them to innovate – in much the same way that Google has allowed their engineers to innovate. Sun also needs to rebuild their sales channel from the ground up, getting away from the monolithic sales strategy and zeroing in on what helps their core – hard to do without really telling the world what your core is. I wish them all the luck, ’cause I love their products (a love that goes back to my Sparc20 days). I don’t think it’s too late, but they need to do something soon or they will end up not surviving.
krypted September 25th, 2008
Posted In: Unix
Business, MySQL, Solaris, Sun, Unix, ZFS
krypted September 24th, 2008
Posted In: Xsan
ADIC, Quantum, StorNext, Xsan
Importing ldf files is one way to extend an Active Directory Schema. In 2003 you could use ldifde to import ldif or ldf files. In 2008 you’ll be happy to know the syntax hasn’t changed.
To import directory objects use the following command
ldifde–i-ffilename-sservername:port-m-ausername domain password
To export directory objects use the following command
ldifde-e-ffilename-sservername:port-m-ausername domain password
krypted September 23rd, 2008
Posted In: Active Directory, Windows Server
Active Directory, extending active directory schema, ldif, schema
The Google Search Engine is probably the top wonder in the Internet world. Why, because it’s just so friggin’ huge! But, also because it involves Google Maps, is integrated with gMail and well, is just a better engine than the other’s.
Wikipedia – and don’t forget specialty wiki’s like http://starwars.wikia.com/wiki/Main_Page or even (as depressing as it may be) the wikia 90210 page.
Social Networks – Facebook, MySpace, Classmates.com and LinkedIn – oh and digg and delicious too… Social networks are today’s iteration of what we thought virtual reality would be. They get better every year, with the exception of New Facebook, which isn’t actually as cool IMO as old Facebook.
Free email – Be it Hotmail (which to me is the original), Gmail or Yahoo mail
E-commerce – Amazon.com, Buy.com, eBay, online banking and one of the best ever (because it’s free), CraigsList.
Peer-to-Peer networks – Torrents, Tor (OK it’s a stretch to call it P2P), etc. I mean, really…
Wait – that was only 6… Well, let me know what you think should be number 7. 😉
krypted September 22nd, 2008
Posted In: Articles and Books
amazon, gmail, Google, Google Docs, google maps, wikipedia
Next Page »
So we’ve been messing around with Check Point for awhile. But we never actually had to mass deploy it until recently. After messing around for awhile, we decided that we actually kinda’ like how they do things. There are various strategies you can take with how you choose to deploy the software, but they all boil down to building an *.ips file and either publishing it through a network mount as part of the installation package for Check Point FDE. The software automatically begins to encrypt the drive when you push it out, so you don’t need to push out an image with a pre-encrypted drive, although you will need to have it reboot once you’ve pushed out the package in order to start encrypting.
krypted September 21st, 2008
Posted In: Mac OS X, Mac OS X Server, Mass Deployment
Full Disk Encryption, Mac OS X, Security