[12:06] anythong new in -directory land? [12:06] i s this the quiet before the storm? [12:09] quiet before people meet up in person === ajmitch just had a 12 hour flight [12:09] & so I'm off to have a shower now :) [12:57] is krb5-kdc not in any .schema? [01:03] err any .deb [01:03] krb5-kdc.schema is MIA according to apt-file [01:41] arr.. === lophyte wishes he was at the uds === Burgundavia [n=corey@ubuntu/member/burgundavia] has joined #ubuntu-directory === wasabi_ [n=wasabi@194.sub-75-210-121.myvzw.com] has joined #ubuntu-directory [04:16] hi === wasabi_ [n=wasabi@130.sub-75-208-136.myvzw.com] has joined #ubuntu-directory [05:09] hi wasabi === wasabi_ [n=wasabi@ubuntu/member/wasabi] has joined #ubuntu-directory === wasabi__ [n=wasabi@91.sub-75-211-212.myvzw.com] has joined #ubuntu-directory === nkassi_ [n=nkassi@WK20-156.lewisweb.net] has joined #ubuntu-directory === nkassi_ [n=nkassi@WK20-156.lewisweb.net] has joined #ubuntu-directory === Fujitsu [n=Fujitsu@ubuntu/member/fujitsu] has joined #ubuntu-directory === Fujitsu [n=Fujitsu@ubuntu/member/fujitsu] has joined #ubuntu-directory === nkassi_ [n=nkassi@WK20-156.lewisweb.net] has joined #ubuntu-directory === nkassi_ [n=nkassi@WK20-156.lewisweb.net] has joined #ubuntu-directory === nkassi_ [n=nkassi@WK20-156.lewisweb.net] has joined #ubuntu-directory === wasabi_ [n=wasabi@ubuntu/member/wasabi] has joined #ubuntu-directory === lophyte [n=dsulliva@bas5-toronto63-1128749371.dsl.bell.ca] has joined #ubuntu-directory === nkassi [n=nkassi@WK20-156.lewisweb.net] has joined #ubuntu-directory [06:01] Hey [06:01] hi nkassi === ajforgue [n=andrew@207.47.10.130.static.nextweb.net] has joined #Ubuntu-Directory [06:09] morning all [06:09] shut up, n00b. [06:10] roflcopter [06:10] Does Gconf have a way to pull info from an ldap server ? [06:11] nkassi: I saw some info about pulling settings for evolution from LDAP into gconf [06:11] I don't think the code is maintained anymore though [06:11] evolution-gconf-ldap-backend Just saw that on google [06:12] other than that I havn;' [06:12] grr [06:13] that sucks. [06:13] I have not seen anything other than that [06:13] I was thinking that it would be possible to use that to create *gulp* GPOs [06:14] At least to control the desktop [06:14] nkassi: it makes sense to me [06:15] kinda like the windows registry can override local machine settings with domain settings [06:15] exactly [06:16] http://www.gnome.org/projects/gconf/plans.html [06:17] according to that it's already been done twice. [06:28] nkassi: I've looked at the code, it's fairly ioncomplete/old [06:51] so no luck on that one I guess. [06:52] unless someone wants to do some coding :) === wasabi_ [i=wasabi@ubuntu/member/wasabi] has joined #ubuntu-directory [06:55] who's here? [06:55] nobody [06:55] ajmitch is here too [06:55] sort of [06:55] Hhe. [06:56] wasabi_: going to edubuntu network auth server spec session at 11? [06:56] Most definitly. [06:57] great [06:57] ogra is right in front of me now [06:58] LP is slow. =( [06:58] always [07:03] okay where is everybody? haha [07:08] ???? [07:11] forums arguments [07:11] where are you? === ajmitch doesn't know the room name, off to the right hand side === SimonAnibal [n=sruiz@adsl-68-251-147-250.dsl.bltnin.ameritech.net] has joined #ubuntu-directory [08:02] what room number is the edubuntu network auth server discussion? [08:03] nevermind, I found it just needed a page refresh [08:03] will recordings of the meetings be online or do we need to listen in via sip [08:04] both are available [08:05] well I'm sure there are enough competent people there so I'll catch up later [08:05] we're just in the room now === SimonAnibal [n=sruiz@adsl-68-251-147-250.dsl.bltnin.ameritech.net] has joined #ubuntu-directory [08:06] ajmitch: I'm listening to the VOIP room === wasabi_ [i=wasabi@ubuntu/member/wasabi] has joined #ubuntu-directory [08:10] anything interesting? :) [08:13] not yet === Burgundavia [n=corey@ubuntu/member/burgundavia] has joined #ubuntu-directory === wasabi_ [i=wasabi@ubuntu/member/wasabi] has joined #ubuntu-directory === robertj_ can't make out anything in 5001 === robertj_ 5004 isn't any better [09:50] ahh cleared up === Fujitsu [n=Fujitsu@ubuntu/member/fujitsu] has joined #ubuntu-directory === stelis [n=se@82-71-4-26.dsl.in-addr.zen.co.uk] has joined #ubuntu-directory === wasabi_ [i=wasabi@ubuntu/member/wasabi] has joined #ubuntu-directory [11:27] wasabi_: so what happened in edubuntu network auth? [11:27] I tried to listen in but my machine conspired against me [11:29] basically they'll use smbldap-tools, they need stuff working asap [11:30] did they decide on openldap then? [11:30] they did not decide. [11:30] If we can get FDS packed they'll consider it [11:31] I'm not that concerned either way. Whatever they do will have very limited scope... small schools, etc. [11:31] And hopefully it'll get them working on the same stuff we know they need to be working on anyways? heh [11:31] any multi-server stuff will be fairly basic - mostly just 1 auth server for everything [11:31] Ya know, principal unplugs his laptop, NSS blocks. [11:32] Yeah. I suspect they aren't going to touch on kerberos much. ogre said he had some more meetups scheduled for it. [11:33] I suspect they'll run into the same things we're already considering when they start talkinga bout large districts connected together, and various security requirements in the US, etc etc [11:34] kbuntu samba integration next hour? [11:34] Wonder what that's about. [11:35] did you see GOOG's plans for a 20k annual donation to SMB? [11:35] (recurring annually that is) [11:35] Woh. No. [11:36] make no mistake, to GOOG it is chump change, but like I said, samba 4 has _got_ to work [11:38] wasabi_: kubuntu samba integration is about making it easier to mount smb shares in KDE [11:38] ahh. [11:38] doesn't look like a directory services type topic [11:41] although ironically OS X uses structured network views to do just that === robertj_ doesn't use any of those in his directory though [11:50] wasabi_: but to put things in perspective, if you are in the middle of a rural school district you probably don't have hardware that can really deliver enough 9's, so a very limited scope is probably pretty realistic [11:51] although alot of those issues go away if home directories are synced and credentials cached vs mounting === abartlet [n=abartlet@dp.samba.org] has joined #ubuntu-directory [11:52] Sure. Worst case scenarios apply though. [11:52] Server goes down, entire school locks up. [11:52] Not being able to access network resources is one thing, losing open documents because the filechooser tried to lookup a uid and the server was gone, is another. [11:54] wasabi: and for that reason I think you will see a lot of schools with only student desktops being managed in such a fashion, at least until syncing replaces mounting [11:55] wasabi_: which uid are they going to be looking up? [11:56] Heh. Good point. [11:56] most users operate with files in their own uid, or at least their supplementary groups [11:56] and most gui apps don't display the user anyway [11:56] so, the user and their supplementary groups are 'easy' to cache [11:57] How does winbind deal with that anyways? it has a password cache built in right? [11:57] hey abartlet [11:57] But also a lookup one, but under what criteria is the record cached? [11:57] easy [11:58] at login time, it is a sensible decision to cache information about the user who just logged in [11:58] ie, all the groups returned in the initgroups() [11:58] you probably have that anyway, as part of processing the initgroups [11:59] we aggressivly cache the user -> group list information at login time [11:59] taken from either the PAC, or the 'info3' reply from a NTLM SamLogon request [12:00] Heh. I really want to have a conversation with somebody about my winbind->somethingelse idea. [12:01] what would the something else be?