Comments on: The broken dreams of a Linux system administrator

By: Cyber Killer

Fri, 04 Nov 2011 05:39:13 +0000

The upgrade hate also bugs me. Recently I was shown an ubuntu machine that served as a webserver and they want me to secure it… But it was so f**** old the support ended (not LTS even), so no repos no nothing.

]]>

By: Jeff Sadowski

Tue, 16 Aug 2011 04:34:49 +0000

Having multiple Linux distros never bothered me. Starting with Slackware seems to have helped with those kind of experiences. I’d love to have that situation over the multiple versions of windows and office that I’m stuck with.

]]>

By: linuxari

Mon, 15 Aug 2011 10:11:27 +0000

Be di sicuro non mi farebbe male, avendo fatto solo studi tecnici 😉
Rilancio con un ripasso generale dell’inglese dove faccio degli orrori 🙂

]]>

By: linuxari

Mon, 15 Aug 2011 10:10:11 +0000

Thanks for the long answer eMBee, i’m sure there are both side of the medals, and for the developers a sys admin with his weird idea could be a nightmare.

And for distro, desktop and server should follow different paths IMO, just keep the same package manager if possible so Red hat/CentOS on server and fedora on Desktop, or Debian on server and Ubuntu on Desktop…

]]>

By: Anonimo

Mon, 15 Aug 2011 09:47:21 +0000

Forse e’ il caso che tu segua anche qualche corso per imparare l’italiano!

]]>

By: eMBee

Mon, 15 Aug 2011 04:02:54 +0000

i am a developer ans system administrator, so i can understand both sides.
the job of a sysadmin is to serve the users, because if you don’t serve them they will work around you and your job will be much worse.

on your security points for example, i’d go find out why these requests are made. what is it that the db guy really needs to do? what are the developers trying to do? maybe they need to be put in a seperate subnet to protect the rest of the network while the developers are more exposed.

as for the update of software, that’s sometimes an outside problem, sometimes it is just an issue of timing. not sure how it can be helped other than strengthening outside protection, maybe having policies that require developers machines to be uptodate, keep developers alerted about upcoming upgrades so they can prepare for it. i’d maybe also make the security team part of the development team and have them involved in decisions about which versions are best for supporting.

as for the uniform environment, i simply disagree with that one.
one of my clients had standardized on fedora. sure, not the best choice, but it worked.
then asterisk came along.
asterisk is best supported on centos. do you think i put it on a fedora machine? no way. that would have meant extra work for me for something that is meant to be extra stable.
people can deal with a hickup on a desktop. but have the phones go down and they cry bloody murder.

yes, tracking multiple distributions is more work if they all do the same job, but i found that some distributions are not suitable for some things. for servers i want something really stable, debian stable, centos, etc…
but on desktops people want newer software, so we need something like ubuntu, fedora. or even foresight.

developers are a mixed bag, on the one hand the need new versions of tools, and on the other they may need to deploy on stable servers. the best advice i have seen here recommends that every developer have a different system, that way ensuring that the product being developed runs on the widest selection of different systems (that includes mac os, windows and a few different linux distributions, maybe even bsd or solaris.)

also, a homogeneous environment is easier to attack. if the attacker found a way itno one machine, then all machines are accessible, whereas in a heterogeneous system such attacks are less easy to exploit.

greetings, eMBee.

]]>

By: jhansonxi

Mon, 15 Aug 2011 01:26:57 +0000