I did my first install yesterday evening on an old Compaq SFF: PIII/500, 256Mb mem, 6Gb disk.
Install went well. I have my own DHCP server, and supplied a sub zone off my registered domain name.
Followed the reboot and got to a login prompt. Figured that I should log in as root, that is what I always do when I build a new system. Did a bit of pinging, then ran 'yum update'. At the end of this I got a message about needing to run a couple of commands, which I did and rebooted. System now runs a long time and seems to be setting up some services then allows me to log in again. I do so as root.
Nothing much. No information on managing this unit...
Oh, look at Chapter 6! Chapter 5 ended prematurely. There is something about selecting 'auto' mode? Did not see that in the install, nor is there any information on 'auto mode' in Chapter 5. Well Ch 6 tells me to log in as 'admin', not root! Dah, NOW I get a menu....
And to get remote access to the server-manager from my other systems which are all on different subnets, I have to first go into it server-manager to set up remote access. Well, I am NOT your typical newbie. They don't tend to have 64 public IPv4 addresses divided into 6 subnets plus 6 rfc1918 subnets with IPv6 addressing available on many of these.... All in your home.
So now I am up to managing my first network from my Centos 5.2 laptop with Firefox...
I create a group; oh lower case only? fine. I guess since NT was case insensitive, restricting Linux to lower case to avoid problems makes some sense. Perhaps this is covered somewhere?
I create my first user, lower case again. It comes up locked. Well I did not remember a password field in the create user panel, so this makes sense, and I go to change the password to only discover....
YOU HAVE those STUPID password restrictions enabled! STUPID and insane! I have TAUGHT Authentication and get involved in all the craziness in passwords. Check Rich Smith's web site:
http://www.cryptosmith.com/sanity/pwdilemma.htmlIn his book on Authentication, Rich shows a simple way to create a password with 50 bits of entropy. It is one of a number of rules I have used for my users here.
So is there a way to turn off this password enforcement policy? If not I will be finding passwords on post its under the mouse pad:
http://www.cryptosmith.com/sanity/pwdilemma.html#anchor12902853I don't need Dilbert's Mordac (
http://www.cryptosmith.com/sanity/mordac.jpg) in my home....
So that is it for now. I have some other tasks to tackle this morning...
8 Replies
1591 Views