• No results found

Tools for Windows System Support

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Tools for Windows System Support"

Copied!
48
0
0

Loading.... (view fulltext now)

Download now ( 48 Page )

Full text

(1)

TechKnowFile 04

Tools for Windows

System Support

Lloyd Smith

Department of Computer Science [email protected]

(2)

Agenda

1.Tools for User Support

- System Design - User Education

2.Software Tools for Servers

- Samba: file, print, authentication

- Poptop: Virtual Private Network (VPN)

3.Software Tools for Workstations

- Windows : Cygwin (Xserver)

(3)
(4)

What's that noise?!?

Tools for

(5)

Userbase

Administrative Staff

20 Windows workstations 5 Linux workstations

25 users

Student labs (CDF)

100 Windows 100 Linux

50 Xterms (Linux)

6 application & compute servers (Linux) 3000 users

(6)

Network Design Considerations

 Security

 Reliability

 Redundancy

(7)

Security:

UTorSUS.reg

REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU] "NoAutoUpdate"=dword:00000000 "AUOptions"=dword:00000004 "ScheduledInstallTime"=dword:00000004 "UseWUServer"=dword:00000001 "ScheduledInstallDay"=dword:00000000 "RescheduleWaitTime"=dword:00000004 "NoAutoRebootWithLoggedOnUsers"=dword:00000000 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate] "WUServer"="http://update.utoronto.ca" "WUStatusServer"="http://update.utoronto.ca"

(8)

Security:

lock down C:

xcacls.exe "C:\Documents and Settings\All users\Start Menu" \

/T /E /C \

/G Administrators:F \

/G System:F \

/G Users:R

Other examples:

“Creator owner”:C

(9)

Network Design Considerations

 Security

 Reliability

 Redundancy

(10)

Network Design Considerations

 Security

 Reliability

 Redundancy

(11)

Redundancy

 “Belt and suspenders” approach

 Windows 2000 offline files

(12)

Network Design Considerations

 Security

 Reliability

 Redundancy

(13)

User Choice

 Web browsers

 Email clients

(14)

Design Summary

There are two ways of constructing a software design; one way is to make it so simple that there are obviously no deficiencies and the

other way is to make it so complicated that there are no obvious deficiencies. The first method is far more difficult. - C. A. R. Hoare

(15)

User Support Tools

 Manuals and books

 FAQ's

 Webpages

(16)

User Support Tools

 Manuals and books

 FAQ's

 Webpages

(17)

User Support Tools

 Manuals and books

 FAQ's

 Webpages

(18)

User Support Tools

 Manuals and books

 FAQ's

 Webpages

(19)
(20)

Agenda

1.“Wetware” Tools for Users - System Design

- User Education

2.Software Tools for Servers

- Samba: file, print, authentication

- Poptop: Virtual Private Network (VPN)

3.Software Tools for Workstations - Windows : Cygwin (Xserver)

(21)

Network layouts

Mainframe

ASCII “dumb” terminals

Peer to peer

Boot from Network Windows PDC

(22)

Network layouts

Mainframe

ASCII “dumb” terminals

Peer to peer (Macintosh, staff only)

Boot from Network Windows PDC

(23)

Network layouts

Mainframe

ASCII “dumb” terminals Peer to peer

Boot from Network (Netware, 1st year students)

1991-1997

Windows PDC Samba PDC

(24)

Network layouts

Mainframe

ASCII “dumb” terminals Peer to peer

Boot from Network

Windows PDC (Staff 1995-2004)

(25)

Network layouts

Mainframe

ASCII “dumb” terminals Peer to peer

Network boot

DOS/Win3.1 diskless machines Windows PDC

(26)

What is Samba?

Samba is a suite of tools for sharing resources such as printers and files across a network

Runs on many platforms (Unix, BSD, OS X, Netware, VMS, OS/2)

Provides authenticated access to file and print services

(27)

Why Samba?

Solaris server experience (vs Netware)

Easy remote server administration (ct WinNT) No client install on Windows machines

Unification with Unix filesystem (first year vs up-per year, TA's instructors)

Server hardware spare parts Free

(28)

Samba Experience

Installed samba versions 1.19a to 3.0 Sparcstation 5 running Solaris

Dell GX1 running RH 7.3

WinNT 4.0, Win 2000, Win XP clients Occasional bugs, issues, gotchas

(29)

Samba Overview

2 daemons smbd, nmbd

/etc/samba/smb.conf

/etc/samba/smbpasswd

Scripts for password change and printing

Assorted client software smbclient smbpasswd

smbstatus

(30)

Samba:

PDC

/etc/samba/smb.conf

[global]

workgroup = CDF domain master = yes

logon path = \\%L\%U\.NTProfile logon home = \\%L\%U

logon drive = h: [netlogon]

comment = Network Logon Service path = /cdfpc/netlogon

guest ok = no writable = yes locking = no public = no

(31)

Samba:

PDC

Create user accounts for machines in

/etc/passwd

Run 'smbpasswd -ma

machinename

'

From Windows machine join domain

Change root password for smb

authentication

(32)

Samba:

Passwords

1)Run crypt to generate /etc/shadow entry

perl -e 'crypt ($password, $salt)`;

2) Python snippet to generate smbpasswd

def NTPasswordHash( self, password ):

"""Returns a 32-character MD4 password hash (Win NT and above).""" from Crypto.Hash import MD4

md4 = MD4.new()

md4.update( unicode(password).encode('utf-16-le') ) md4hash = md4.hexdigest().upper()

(33)

Samba:

home directory

[homes]

comment = Home Directories browseable = no

writable = yes public = no

hide dot files = yes

directory mask = 700 create mask = 600

(34)

Samba:

Printers

/etc/samba/smb.conf

load printers = yes

printcap name = /etc/samba/printcap [printers]

comment = All Printers path = /var/samba/spool browseable = yes

print command = /cdfpc/sbin/smbprnfilt %u %p %I %m;\ /local/bin/lpr -P %p %s; /bin/rm -f %s

lpq command = /local/bin/lpq -P%p

lprm command = /cdfpc/sbin/smblprm %u %U %p %I %m %j printable = yes

(35)

Samba:

Printers

Run smbd on print server

Can filter jobs before printing

Can send popups (using smbclient)

when job is

submitted –

not post

notification

(36)

Samba:

Shares

/etc/samba/smb.conf

[staff]

comment = system maintenance workspace path = /admin

public = yes printable = no browseable=no writable = yes

create mask = 664 directory mask = 775 valid users = @staff

(37)

Samba:

Preexec

/etc/samba/smb.conf

[wwwsetup]

preexec = /cdfpc/sbin/wwwsetup %H

comment = Setup CDF Home Page function path = %H

browseable = no writable = no

guest ok = no

follow symlinks = no preexec close = yes

(38)

Samba:

smbclient

Unix command line utility

Provides ftp like functionality to Windows system

% smbclient //b2200-01.cdf.toronto.edu/c$ \ password -U B2200-01\\Administrator \

-c 'PUT newApp.lnk winnt\\profiles\\All Users\\Desktop '

(39)

PoPToP

Point to Point Tunneling Protocol Server Open Source poptop.sourceforge.net

Separate passwords from unix accounts Works with Window's VPN client

(40)

PoPToP

 All traffic between nodes is encrypted

 No need to forward ports

 Works for UDP traffic also

(41)

Agenda

1.“Wetware” Tools for Users - System Design

- User Education

2.Software Tools for Servers

- Samba: file, print, authentication

- Poptop: Virtual Private Network (VPN)

3.Software Tools for Workstations

- Windows : Cygwin (Xserver)

(42)

Xservers

Xwin32 Starnet

eXceed Hummingbird

(43)

Xservers

 xdmcp cannot be tunnelled over ssh, use in

trusted networks

 For secure connections over untrusted

networks run WM locally, tunnel X clients over ssh with '-X'

(44)

VMWare

Provides x86 hardware emulation Runs on x86 hardware (no Sparc) Commercial product

(45)

VMWare

Used at DCS to provide access to

AMS, MS Office for Linux users

VM can join domain

(46)

Services for Unix

Provides selection of unix command line utilities (no X server)

Comparable to GNU utilities Free as of Jan 2004

(47)
(48)

Resources

www.samba.org

Using Samba (O'Reilly) www.poptop.org

www.cygwin.com www.vmware.com

References

Download now ( PDF - 48 Page - 356.57 KB )

Related documents

Program: Bachelor of Liberal Arts Degree. Department: Interdisciplinary College: McMicken Arts & Science Year:

Each term, the Program Director and Advisor will work in coordination to insure that students complete the declaration of program and capstone proposal; to gather responses;

Keywords: Baltic stock markets, unit root, Engle-Granger approach, Johansen cointegration test, causality, impulse response, variance decomposition.

Thus, impulse responses and variance decomposition methods will be implemented in order to investigate whether the price movements in the Baltic stock markets can

Turkey's potential as an energy hub: to what extent can it fulfill its potential as a provider of energy security for Europe?

Regarding the question of whether Turkey would be able to create a spare capacity to offer as an alternative option for the EU gas market, based on current discoveries and

How Infectious Was #Deflategate?

average individual tweeting about the Deflategate story was able to elicit 4.21 to 11.05 new tweeters to tweet about Deflategate during the early stages of the news story, and that

Facebook – public communication media for the Romanian institutions

R1 : From the analysis and interpretation of the study data, I have noticed that the modalities of building the public image through Facebook pages are represented by visual

Managerial Convergence in Evolution Public Institutions in the European Union

2) from the way traditional organizational - bureaucratic organization of public administration through flexible personnel policies, terms and conditions of employment;.. 3)

Implementing Earned Value Management on Agile Projects

Agile provides a high degree of flexibility and rapid development, but earned value management techniques can be applied to the Agile framework in order to mitigate scope

List of Charges for Entrepreneurs and Small Business, Public and Non Profit Sector

• Complex transactions domestic - payment order acceptance (per item) via internetbanking, Business 24 or MultiCash), ATM or payment terminal, standing order or collection