HEP System Managers Meeting, 19 November 1999,
Royal Holloway Particle Physics Group Summary
Desktop - PC on every desktop,
the majority run RedHat 6.0 Linux, remainder Windows NT4 WorkStation
UNIX server - running Digital UNIX 4.0D acts as: file server, NFS,
NIS, SMB, web server, print server, X sessions (Exceed), daily back-ups
Windows NT Server - PDC
Windows NT Terminal Server - BDC, runs Citrix Metaframe for client
access from Linux desktop PCs.
Multi-media PC - IP video conferencing, scanning, CD writing.
two Sun Workstations - CAD development work.
Sun server - project based work.
Network - structured cabling
connected by a mixture of hubs and switches 10/100bT; 10b5 connection to
Staff - three part-time system
In general PCs to run RedHat Linux.
Build PC in the departement to ensure compatibility and standardisation
- network and graphics cards etc.
Security - regular checking of system logs, aggressive patching, monitor
user groups, user education.
Particular difficulties we face at the moment:
Year 2000 - carried out audit
of all hardware and software.
Security - Windows viruses,
regular attacks kept out by tcp_wrappers and wrapped portmapper; X server
is insecure. Considerable time is taken keeping up-to-date with patches
and tracking security user groups for the latest exploits. Insufficient
time available to set up additional monitoring tools.
Hardware compatibility - policy
has been to standardise the hardware we use e.g. graphics and network cards.
However, hardware can rapidly become obselete.
Plans for the Future
Security - install Firewall.
UNIX Server - move from Digital
UNIX to Linux or Sun Solaris over a two year time span.
This driven by desire to reduce the number of different systems we have
Campus network connection -
change over from 10b5 connection to ATM.
Overall policy - desktop PCs
running Linux. Windows run as client sessions from PC running Windows
Terminal Server. All services on one central UNIX server. Ideally,
run one version of UNIX and one version of Windows. Possible migration
to Windows 2000 as necessary.