We currently use Zenworks 6.6 to manage ~2000 NLD and SLES systems for system patching. It works great for that purpose. It doesn't offer more than very basic inventory management and reporting yet. I say yet because I'm on the beta for the next version and it is amazing. It makes managing Linux dekstops and servers ridiculously easy. If you've used Wen for Windows, they've basically pulled all the same functionality into the Linux realm. Imaging, patching, configuration management, security policies, reporting, inventory/asset management, remote access (vnc or ssh), everything is all wrapped into one bundle. Some of the other pieces we use are at our site if you're interested in other open source and commercial packages we use. It's not much more than basic marketing material at this point but feel free to ask any questions.
We're also using Zenworks Linux Management and while the current version is significantly lacking when compared to Zen for Windows, version 7 changes all of that. I'm currently on the beta and they've managed to bring almost all the same features to the Linux platform. It won't be out for a few months probably but when it does you should take a look at it. It is a revolutionary tool for Linux desktop (and server) management and doesn't really resemble the current version (which is essentially Red Carpet Enterprise) at all. It's the killer app that Linux on the (enterprise) desktop has been looking for.
You're best bet is Multisync. It's a fantastic app that can sync phones with Evolution,LDAP directories, Palm, SyncML, Opie/Zaurus devices, and Windows CE/ME devices. I use it between my Zaurus, my company LDAP server, Evolution, and my T68i. I'm getting a Nokia 3650 soon and even though it's not completely supported yet (it uses binary ML), I'm hoping it will soon. Multisync is scheduled to be included with the main gnome distribution somewhere around the 2.6 or 2.8 timeframe but is very usable now. Give it a try.
I wish I could make this my signature (damn 120 char limit):
"Whenever someone thinks that they can replace SSL/SSH with something much better that they designed this morning over coffee, their computer speakers should generate some sort of penis-shaped sound wave and plunge it repeatedly into their skulls until they achieve enlightenment." --Peter Gutmann
If I'm not mistaken, there are exploits in the wild for at least the first vulnerability. The full discloser list makes reference to it at http://lists.netsys.com/pipermail/full-disclosure/ 2003-September/010116.html and someone claims that "The systems in question are FreeBSD, RedHat, Gentoo, and Debian all running the latest versions of OpenSSH."
They had that at Defcon. They called it the wall of sheep and would display usernames, partial passwords, and protocols that had been captured over the wireless links at Defcon. I loved seeing a root telnet from someone displayed on the wall.
Re:Might not be about the desktop war
on
Novell Buys Ximian
·
· Score: 1
Novell actually has quite a few products aimed at desktop management which are quite nice (Read Zen). If they could do the same thing for Linux with Ximian that they do with Zen for Windows, the world would be a much better place. It would allow a lazy admin to manage Linux servers and desktops very easily in a fairly secure and centralized fashion. Zen itself is a fantastic tool that no Windows admin should be without (and no, it doesn't require Netware).
The difference with open source software/distributions is that upgrades to the latest version are free. While upgrading does take time it does not cost anything in terms of licensing fees.
You're kidding, right? The clients I work with are predominantly NT based because the of the license/security issues surrounding Microsoft and they don't want to be lead deeper into the licensing pit that is Microsoft. Granted, NT is very old, but if you have to pay that much for an NT server license, you're going to want to get your moneys worth for it (if that's at all possible).
Symantec Manhunt (formerly Recourse) is a commercial IDS which kicks the crap out of every other IDS I've ever used. It runs on Solaris (or Windows for the foolhardy) and looks for traffic anomolies. You can compile in snort rules for it to check against and it just flies. It will correlate events from multiple sources or Manhunt nodes and can reconfigure your routers in real time to block DoS attacks. I don't work for Symantec and don't like most of their tools, but buying Recourse gave them a slick IDS.
What model ATI card are you using? I would be interested in getting a laptop with the Radeon 9000 mobility for Christmas. ANyone have experience with these and the latest ATI drivers? I don't want to spend $179 for the XiG drivers but I don't want to be stuck with just vesa either. Does anyone know if TV-Out works with the new ATI drivers?
If you want to get a PrismII based wireless card for your Linux box, you can make a Linux based AP. I use it and it works great for me. It might not be much cheaper than just using a regular access point, but you do gain quite a bit more control over what's going on.
I strongly second this. I've got a Zaurus and a SMC 2642w wireless NIC and betweeh ssh/telnet/samba/apache/vnc server/vnc client/etc... it does everything I could possibly want and then some. I use it all the time to diagnose wireless problems as well as look for insecurities with tools like kismet
Re:Maybe I just don't get it..
on
WineX 2.0
·
· Score: 1
For me it's about dedicating far LESS space on my HD. Not all of us pay the Micro$haft tax (The only version of WIndows I've ever owned was 95 and I've used Linux ever since). While I dearly love native Linux apps, the ability to seamlesley run win32 apps is very important, and wine provides this functionality for me.
Ya, MySQL listens on 3306 by default, open to the whole world on my machine. It also uses root as the default account (not that it's any better than the default of postgres on PostgreSQL).
While I can see the parallels, they aren't asking for donations (like they used to). As a club member, you get access to commercial software packages that you could previously only get if you purchased the full edition. You also get access to their support forum (MandrakeExpert). I think it's worthwile.
While I've never used Slackware (too lazy), I have used Suse, Debian, Mandrake and Redhat. Of all of them, Mandrake and Debian are the only ones I would consider using because package management shouldn't be the nightmare it is with some distributions (Redhat). Mandrake has a tool called urpmi which supports all of the functionality of apt-get for an rpm based system. They have a tremendously involved user community 2nd probably only to Debian which they really pay attention to and take heed of. In order to keep it this way instead of having them turn into another Redhat which follows only $$ they are asking for new members. Since they're probably the easiest Linux distribution for newbies AND power users, I think it's a worthwile endevour. But that's just me.
If you use Mandrake you don't need apt-get. There's a tool called urpmi which does exactly the same thing and they've been polishing it for a while now. Just urpmi.addmedia to create a list of updates from a source (check the mirrors), urpmi.update , urpmi --auto-select -M and everything gets updated. Or urpmi to install just that package and whatever it depends on. You can urpme name to uninstall it and whatever depends on it as well. Very convenient. It's the only way I can not use debian.
I was having the same problem with mandrake kernel source rpms until someone told me to disable "Set version on all modules symbols." After that it worked like a charm, although I have noticed significantly quicker bootup times when using a stock kernel (guess all those extra patches they include slow things down some...)
Well, I haven't used it for anything wacky, but it's more stable than when it's running under Windows (you're at least getting rid of one unstable element). It definately could use some polish though...
Lotus Notes runs flawlessly with wine. Trust me, I use it. I don't have anything Microsoft, installed it onto the fake_windows partition that wine sets up for you, and it has worked great ever since. The install was a bit of a pain because timezone detection by Notes is weird, but if you just copy your whole Notes folder onto your linux partition and then run wine/path/to/notes.exe it should work fine. Try it first, then do yourself a favor and loose Windows forever. Email me if you need help: delder @ novacoast.com.
MRTG is a great tool for monitoring network usage as well as many other stats (CPU usage, Memory Usage, etc..) if you have the oids for it. I wrote a program called MRTGconfig which makes monitoring multiple routers, servers, etc.. easy to do. You can find it at mrtgconfig . Hopefully that will make monitoring things easier.
Slashdot Mirror
We currently use Zenworks 6.6 to manage ~2000 NLD and SLES systems for system patching. It works great for that purpose. It doesn't offer more than very basic inventory management and reporting yet. I say yet because I'm on the beta for the next version and it is amazing. It makes managing Linux dekstops and servers ridiculously easy. If you've used Wen for Windows, they've basically pulled all the same functionality into the Linux realm. Imaging, patching, configuration management, security policies, reporting, inventory/asset management, remote access (vnc or ssh), everything is all wrapped into one bundle. Some of the other pieces we use are at our site if you're interested in other open source and commercial packages we use. It's not much more than basic marketing material at this point but feel free to ask any questions.
We're also using Zenworks Linux Management and while the current version is significantly lacking when compared to Zen for Windows, version 7 changes all of that. I'm currently on the beta and they've managed to bring almost all the same features to the Linux platform. It won't be out for a few months probably but when it does you should take a look at it. It is a revolutionary tool for Linux desktop (and server) management and doesn't really resemble the current version (which is essentially Red Carpet Enterprise) at all. It's the killer app that Linux on the (enterprise) desktop has been looking for.
You're best bet is Multisync. It's a fantastic app that can sync phones with Evolution,LDAP directories, Palm, SyncML, Opie/Zaurus devices, and Windows CE/ME devices. I use it between my Zaurus, my company LDAP server, Evolution, and my T68i. I'm getting a Nokia 3650 soon and even though it's not completely supported yet (it uses binary ML), I'm hoping it will soon. Multisync is scheduled to be included with the main gnome distribution somewhere around the 2.6 or 2.8 timeframe but is very usable now. Give it a try.
I wish I could make this my signature (damn 120 char limit):
"Whenever someone thinks that they can replace SSL/SSH with something much better that they designed this morning over coffee, their computer speakers should generate some sort of penis-shaped sound wave and plunge it repeatedly into their skulls until they achieve enlightenment."
--Peter Gutmann
If I'm not mistaken, there are exploits in the wild for at least the first vulnerability. The full discloser list makes reference to it at http://lists.netsys.com/pipermail/full-disclosure/ 2003-September/010116.html
and someone claims that "The systems in question are FreeBSD, RedHat, Gentoo, and Debian all
running the latest versions of OpenSSH."
They had that at Defcon. They called it the wall of sheep and would display usernames, partial passwords, and protocols that had been captured over the wireless links at Defcon. I loved seeing a root telnet from someone displayed on the wall.
Novell actually has quite a few products aimed at desktop management which are quite nice (Read Zen). If they could do the same thing for Linux with Ximian that they do with Zen for Windows, the world would be a much better place. It would allow a lazy admin to manage Linux servers and desktops very easily in a fairly secure and centralized fashion. Zen itself is a fantastic tool that no Windows admin should be without (and no, it doesn't require Netware).
The difference with open source software/distributions is that upgrades to the latest version are free. While upgrading does take time it does not cost anything in terms of licensing fees.
You're kidding, right? The clients I work with are predominantly NT based because the of the license/security issues surrounding Microsoft and they don't want to be lead deeper into the licensing pit that is Microsoft. Granted, NT is very old, but if you have to pay that much for an NT server license, you're going to want to get your moneys worth for it (if that's at all possible).
Symantec Manhunt (formerly Recourse) is a commercial IDS which kicks the crap out of every other IDS I've ever used. It runs on Solaris (or Windows for the foolhardy) and looks for traffic anomolies. You can compile in snort rules for it to check against and it just flies. It will correlate events from multiple sources or Manhunt nodes and can reconfigure your routers in real time to block DoS attacks. I don't work for Symantec and don't like most of their tools, but buying Recourse gave them a slick IDS.
LA has this too based on road sensors and CHP alerts. It's a great way to avoid snarled up parts of the 405.
What model ATI card are you using? I would be interested in getting a laptop with the Radeon 9000 mobility for Christmas. ANyone have experience with these and the latest ATI drivers? I don't want to spend $179 for the XiG drivers but I don't want to be stuck with just vesa either. Does anyone know if TV-Out works with the new ATI drivers?
Not Shakespeare, that's public domain.
/dev/urandom gets you Brtiney.
One
Bayes Theorem
nuff said
If you want to get a PrismII based wireless card for your Linux box, you can make a Linux based AP. I use it and it works great for me. It might not be much cheaper than just using a regular access point, but you do gain quite a bit more control over what's going on.
I strongly second this. I've got a Zaurus and a SMC 2642w wireless NIC and betweeh ssh/telnet/samba/apache/vnc server/vnc client/etc... it does everything I could possibly want and then some. I use it all the time to diagnose wireless problems as well as look for insecurities with tools like kismet
For me it's about dedicating far LESS space on my HD. Not all of us pay the Micro$haft tax (The only version of WIndows I've ever owned was 95 and I've used Linux ever since). While I dearly love native Linux apps, the ability to seamlesley run win32 apps is very important, and wine provides this functionality for me.
Ya, MySQL listens on 3306 by default, open to the whole world on my machine. It also uses root as the default account (not that it's any better than the default of postgres on PostgreSQL).
While I can see the parallels, they aren't asking for donations (like they used to). As a club member, you get access to commercial software packages that you could previously only get if you purchased the full edition. You also get access to their support forum (MandrakeExpert). I think it's worthwile.
While I've never used Slackware (too lazy), I have used Suse, Debian, Mandrake and Redhat. Of all of them, Mandrake and Debian are the only ones I would consider using because package management shouldn't be the nightmare it is with some distributions (Redhat). Mandrake has a tool called urpmi which supports all of the functionality of apt-get for an rpm based system. They have a tremendously involved user community 2nd probably only to Debian which they really pay attention to and take heed of. In order to keep it this way instead of having them turn into another Redhat which follows only $$ they are asking for new members. Since they're probably the easiest Linux distribution for newbies AND power users, I think it's a worthwile endevour. But that's just me.
If you use Mandrake you don't need apt-get. There's a tool called urpmi which does exactly the same thing and they've been polishing it for a while now. Just urpmi.addmedia to create a list of updates from a source (check the mirrors), urpmi.update , urpmi --auto-select -M and everything gets updated. Or urpmi to install just that package and whatever it depends on. You can urpme name to uninstall it and whatever depends on it as well. Very convenient. It's the only way I can not use debian.
I was having the same problem with mandrake kernel source rpms until someone told me to disable "Set version on all modules symbols." After that it worked like a charm, although I have noticed significantly quicker bootup times when using a stock kernel (guess all those extra patches they include slow things down some...)
Well, I haven't used it for anything wacky, but it's more stable than when it's running under Windows (you're at least getting rid of one unstable element). It definately could use some polish though...
Lotus Notes runs flawlessly with wine. Trust me, I use it. I don't have anything Microsoft, installed it onto the fake_windows partition that wine sets up for you, and it has worked great ever since. The install was a bit of a pain because timezone detection by Notes is weird, but if you just copy your whole Notes folder onto your linux partition and then run wine /path/to/notes.exe it should work fine. Try it first, then do yourself a favor and loose Windows forever. Email me if you need help: delder @ novacoast.com.
MRTG is a great tool for monitoring network usage as well as many other stats (CPU usage, Memory Usage, etc..) if you have the oids for it. I wrote a program called MRTGconfig which makes monitoring multiple routers, servers, etc.. easy to do. You can find it at mrtgconfig . Hopefully that will make monitoring things easier.