HEP System Managers Meeting, 19 November 1999,
UCL
Royal Holloway Particle Physics Group Summary
Computing Facilities
-
Desktop - PC on every desktop,
the majority run RedHat 6.0 Linux, remainder Windows NT4 WorkStation
-
System -
-
UNIX server - running Digital UNIX 4.0D acts as: file server, NFS,
NIS, SMB, web server, print server, X sessions (Exceed), daily back-ups
to DLT
-
Windows NT Server - PDC
-
Windows NT Terminal Server - BDC, runs Citrix Metaframe for client
access from Linux desktop PCs.
-
Multi-media PC - IP video conferencing, scanning, CD writing.
-
two Sun Workstations - CAD development work.
-
Sun server - project based work.
-
Network - structured cabling
connected by a mixture of hubs and switches 10/100bT; 10b5 connection to
campus.
-
Staff - three part-time system
managers.
Policies
-
In general PCs to run RedHat Linux.
-
Build PC in the departement to ensure compatibility and standardisation
- network and graphics cards etc.
-
Security - regular checking of system logs, aggressive patching, monitor
user groups, user education.
Problems
Particular difficulties we face at the moment:
-
Year 2000 - carried out audit
of all hardware and software.
-
Security - Windows viruses,
regular attacks kept out by tcp_wrappers and wrapped portmapper; X server
is insecure. Considerable time is taken keeping up-to-date with patches
and tracking security user groups for the latest exploits. Insufficient
time available to set up additional monitoring tools.
-
Hardware compatibility - policy
has been to standardise the hardware we use e.g. graphics and network cards.
However, hardware can rapidly become obselete.
Plans for the Future
-
Security - install Firewall.
-
UNIX Server - move from Digital
UNIX to Linux or Sun Solaris over a two year time span.
This driven by desire to reduce the number of different systems we have
to manage.
-
Campus network connection -
change over from 10b5 connection to ATM.
-
Overall policy - desktop PCs
running Linux. Windows run as client sessions from PC running Windows
Terminal Server. All services on one central UNIX server. Ideally,
run one version of UNIX and one version of Windows. Possible migration
to Windows 2000 as necessary.