You will then need to enter this password to enter single user mode or boot from a CD.
Note that this still doesn't fully secure your machine unless it's physically secured, as someone can simply reset the OF password by changing the amount of RAM in the machine, then zapping the PRAM.
Makes securing a powerbook pretty much impossible, but otherwise...
Well it definitely wasn't intuitive for my daughter, the children of two friends, or the babies in the ward at the hospital.
There is a reason why you have nurses showing new mothers and their babies how to breast feed... It's not just the mother not knowing how to do it.
You watch next time you see a newborn attempt to breastfeed for the first time. There is an instinctive suckling going on, there is an instinctive move towards the breast, but they definitely don't know how to get milk out of the nipple at first.
Remember that the only intuitive interface is the nipple. Everything else is learned.
Stop repeating this crap. Have you ever watched a baby have to learn how to breast feed? There's a reflex there to get to the nipple, but actually doing the feeding isn't intuitive at all.
There are no intuitive interfaces, only ones which are similar to other interfaces you've already learnt how to use...
Well it freaked out at a Deleuze essay... managed to swallow one on the Parmenides, and promptly gave me socket errors on everything else that was more than 2000 words.... bah.
What didn't impress me was that for two of the essays that were too long, I tried just pasting random segements of them in. Still got around 100 for everything...
It's even better than this... Apple listened to the people who were griping about this, and changed the lookup order so that/etc/hosts gets looked at first.
[netsrek@Buffer:~] lookupd -d
lookupd version 310 (root 2003.07.29 18:17:00 UTC)
Enter command name, "help", or "quit" to exit
> configuration
Array: "Configuration"
==> 8 objects
[
Dictionary: "Global Configuration"
<snip>
Dictionary: "Host Configuration"
LookupOrder: Cache FF DNS NI DS
_config_name: Host Configuration
see that? The lookup order for host information is cache, then flat files (/etc/hosts) then DNS, then NetInfo (kind of like Active Directory vaguely) then any other configured Directory Services.
No futzing around needed. Want to add entries to/etc/hosts? just do it.
For more practical advice, you should look at the Mac OS X Server Administrators Guide, which you can find here.
Otherwise for actual day to day problems and solutions, you're best off looking through the mac os x server mailing list at Apple, and the admin list at Omnigroup. Search the archives...
oh come on, have you ever actually implemented directory services?
You *always* need local accounts, at the very least an admin account in case of directory services going down...
you put all your admins in the directory? I don't think so.
Standard practice with a NetInfo domain and Password Server is to have a local admin account for each server, an admin account for each domain, and a Password Server specific account.
You've got it round the wrong way.
User authentication info is still stored in a NetInfo database, it just available either via NetInfo domains, or via LDAP.
geddit?
No, you're wrong. I got cable just after introduction and they definitely used to offer unlimited downloads.
I moved to Optus Cable who had an excellent fair use policy that averaged out around 12Gb/month, but they moved to 3Gb/month soon after. At least they let you run your contract out on the old terms...
Have you actually used it? I do know how it works btw...
There's a real difference between needing real time processing power and something like rendering that Shake/FCP does.
I'd be really suprised if Logic manages to use Zeroconf over a network to achieve this, as the latency of a network connection isn't really feasible for this kind of work afaik.
wtf? hey maclots.... Just cause someone is criticising Altivec doesn't necessarily make them a troll....
I do agree with you that clustering could be far more useful than it currently is, but as you say, anything that requires low latency is kind of problematic...
As far as clustering goes, you know you're able to put together a PC processing monster and use VST System Link ?
Slashdot Mirror
you'd be surprised how many people would get that reference.... and there's more than one sig referencing the same thing on /.
Let's be real here.
If you'd read how the damn system worked you wouldn't look like such an ass.
(ie, the physical owner of the machine can easily remove the password)
Set an Open Firmware password on your machine.
You will then need to enter this password to enter single user mode or boot from a CD.
Note that this still doesn't fully secure your machine unless it's physically secured, as someone can simply reset the OF password by changing the amount of RAM in the machine, then zapping the PRAM.
Makes securing a powerbook pretty much impossible, but otherwise...
Well it definitely wasn't intuitive for my daughter, the children of two friends, or the babies in the ward at the hospital. There is a reason why you have nurses showing new mothers and their babies how to breast feed... It's not just the mother not knowing how to do it. You watch next time you see a newborn attempt to breastfeed for the first time. There is an instinctive suckling going on, there is an instinctive move towards the breast, but they definitely don't know how to get milk out of the nipple at first.
Remember that the only intuitive interface is the nipple. Everything else is learned.
Stop repeating this crap. Have you ever watched a baby have to learn how to breast feed? There's a reflex there to get to the nipple, but actually doing the feeding isn't intuitive at all.
There are no intuitive interfaces, only ones which are similar to other interfaces you've already learnt how to use...
It's EEO in Australia, more often paired as EEO/AA (Affirmative Action).
Well it freaked out at a Deleuze essay... managed to swallow one on the Parmenides, and promptly gave me socket errors on everything else that was more than 2000 words.... bah.
What didn't impress me was that for two of the essays that were too long, I tried just pasting random segements of them in. Still got around 100 for everything...
It's even better than this... Apple listened to the people who were griping about this, and changed the lookup order so that /etc/hosts gets looked at first.
/etc/hosts? just do it.
[netsrek@Buffer:~] lookupd -d
lookupd version 310 (root 2003.07.29 18:17:00 UTC)
Enter command name, "help", or "quit" to exit
> configuration
Array: "Configuration"
==> 8 objects
[
Dictionary: "Global Configuration"
<snip>
Dictionary: "Host Configuration"
LookupOrder: Cache FF DNS NI DS
_config_name: Host Configuration
see that? The lookup order for host information is cache, then flat files (/etc/hosts) then DNS, then NetInfo (kind of like Active Directory vaguely) then any other configured Directory Services.
No futzing around needed. Want to add entries to
It's not stored in /etc/passwd when you're not in single user mode.
You're obviously just trolling. Your average OS X Server installation only has a local admin user defined, not root, so this discussion is moot.
try explaining why you need a local netinfo daemon running if what you're saying is the case...
/etc/passwd gets consulted only in single user mode. Try looking at: niutil -read . /users/root
sometime.
The best doc is This one.
For more practical advice, you should look at the Mac OS X Server Administrators Guide, which you can find here.
Otherwise for actual day to day problems and solutions, you're best off looking through the mac os x server mailing list at Apple, and the admin list at Omnigroup. Search the archives...
You're just tripping.
where is the local root account stored if it's not in a NetInfo database?
nidump passwd /
That was my point, implement Password Server and you don't have this legacy problem with NetInfo anymore.
You'll just get "********" where the password crypt used to be.
oh come on, have you ever actually implemented directory services?
You *always* need local accounts, at the very least an admin account in case of directory services going down...
you put all your admins in the directory? I don't think so.
Standard practice with a NetInfo domain and Password Server is to have a local admin account for each server, an admin account for each domain, and a Password Server specific account.
but local user accounts are still stored in a netinfo db.
there's no reason why this can't change, the whole DirectoryServices thing is rather modular, but that was the thrust of my comment.
If you're not storing accounts yourself, then sure you can bind to LDAP.
If you are storing accounts, even if you're publishing them via LDAP, you're still storing them in NetInfo databases.
I think you'd be surprised.
:)
No OS X Admin worth their salt can get away not knowing how to leverage the power of NetInfo.
the tools have some advantages and disadvantages over the NeXT versions, but they're pretty similar.
Oh, and we don't have to worry about password crypts being visible with OS X either...
You've got it round the wrong way. User authentication info is still stored in a NetInfo database, it just available either via NetInfo domains, or via LDAP. geddit?
You're misrepresenting the situation.
The default umask was the problem.
You could override this, but doing this on all your clients may not have been practical.
no you're wrong.
He claimed that it never used to be unlimited. This is where he is wrong.
The timeline is irrelevant. It was unlimited at some point in the past.
No, you're wrong. I got cable just after introduction and they definitely used to offer unlimited downloads.
I moved to Optus Cable who had an excellent fair use policy that averaged out around 12Gb/month, but they moved to 3Gb/month soon after. At least they let you run your contract out on the old terms...
Attending WWDC -> Aus$2000....
Have you actually used it? I do know how it works btw... There's a real difference between needing real time processing power and something like rendering that Shake/FCP does. I'd be really suprised if Logic manages to use Zeroconf over a network to achieve this, as the latency of a network connection isn't really feasible for this kind of work afaik.
wtf? hey maclots.... Just cause someone is criticising Altivec doesn't necessarily make them a troll....
I do agree with you that clustering could be far more useful than it currently is, but as you say, anything that requires low latency is kind of problematic...
As far as clustering goes, you know you're able to put together a PC processing monster and use VST System Link ?
Been considering this to add to my TiBook...
It's also something that isn't necessarily feasible for the kind of audio work I do.
Clustering multiple machines together is still problematic for stuff like this.
It makes writing music with software instruments/fx bloody annoying as well.
Scientific stuff is a whole nother ballpark, just pointing out that I know I'm not the only musician who uses the Altivec stuff a hell of a lot...
Try doing audio signal processing or heavy graphics/video work.
You're pretty thankful for your Altivec then...
I saw such an insane improvement in Reaktor when it got Altivec enhanced...