Topic: Can Not set "ConsoleMode auto" to work

[paulfung]

Dear All,

Did anyone experience the same problem like me ?

My customer like to see the SME console but not a login prompt in their server screen, as they can see some detail on the server screen and know everything is working fine, in SME8 it work fine.

But I found that even if I set the ConsoleMode to auto in SME 9 by :

# config set ConsoleMode auto
# signal-event post-upgrade
# signal-event reboot

Still I can't boot up the server with the console screen, all I have not matter what I set is just the login prompt.

Is it my typo or is it a bug ? Or is it just happen in SME 9 (x86_64) ?  If it is a bug, I can raise it .....

Anyone care to give a try ?

Best regards,

Paul

[guest22]

Anyone care to give a try ?

Hi Paul,

I can confirm that setting ConsoleMode to auto (your procedure above) will not result in expected behaviour. Can you raise bug please?

guest

[TerryF]

This has been depreciated in SME9

See http://wiki.contribs.org/DB_Variables_Configuration "Console Mode "

[smeghead]

Can I ask why this has been deprecated?

The console just auto loading makes it very easy to support users when they want to test their Internet connection.

If removed for physical security issues can we have the option to enable in server manager if the server is secure.

TIA

[stephdl]

Hi

If you issue is only to test if your user have internet, then I would suggest to install sme9admin mainly because you have a graph with a ping to google.fr

[smeghead]

.. the whole point is that the person doing the check requires no username/password access to anything, just go to console, scroll to option, enter.

The KISS principle in action  .

[guest22]

Testing internet connections is more then just selecting the option. If it says "No internet Connection" What happens next for the person with obviously limited skills or no root/admin access, for he needs to use this option at all.

What are you checking in the first place? for Internet Connection is a complex mesh of dots, and I don't know how one has designed the pattern to connect the dots he wants.

[stephdl]

.. the whole point is that the person doing the check requires no username/password access to anything, just go to console, scroll to option, enter.

The KISS principle in action  .

I understand but an access without password to the console is a flaw...anyone can reconfigure the server and do a mess

[smeghead]

.. yes, true, but I think you missed this part of my post:

If removed for physical security issues can we have the option to enable in server manager if the server is secure.

[stephdl]

I guess no....sorry but we could imagine a contrib whose aims to ping outside of the local network....

[Stefano]

if a "normal" user (or anybody) has physical access to your server, there's no secure server (first rule about security)

[guest22]

I guess no....sorry but we could imagine a contrib whose aims to ping outside of the local network....

I agree, the 'console' applications has too many functions. It could be split up into more wisely applications, where each aplication can be assigned to a user or group.

[smeghead]

.. this is not true, if any one not authorised has access it would be true

I see value in maybe a couple of different menus that could be presented, a limited & a full version.

if a "normal" user (or anybody) has physical access to your server, there's no secure server (first rule about security)

[Stefano]

"authorized" does not necessarily means "smart" or "skilled"

if so instead, he can be easily guided to login and run console

anyway, to check for internet connection you don't need to access to server's console
from any client:
a) ping to server/gateway
b) ping to an outside IP
c) ping to a external hostname

a) server is unreacheable
b) connection is down
c) dns problem

that's all, or am I missing something?

[paulfung]

Did agree to some of your points, but if the server are not physically secured, anyone can do a reboot and enter "Single mode" to get all access, with his hand physically touching the server keyboard.

To re-enable the server console are not that difficult you just need to alter a few lines of code, if you feel comfortable, just go ahead to do it.

In SMEserver, The different is in /etc/inittab

If Boot to console :
# Run gettys in standard runlevels
1:123457:respawn:/sbin/e-smith/console tty1

If Boot with login Prompt :
# Run gettys in standard runlevels
1:123457:respawn:/sbin/mingetty tty1

Setting can be done via : /etc/e-smith/templates/etc/inittab

The reason I do a bug report, is to help making SME server better by putting right info in the Wiki and How to, I guess giving a hand to help is a better choice that to question why.

Yes, I agreed that a cut down version is need if a console has to be used, putting a login prompt sound like a cutting down on the original SME Server function to me.

Why not we either do a cut down on all "not secure" function, and leave the Intertest test, Raid info panel, and server-manager panel, and put a login require on the config section ?  I will try it in my XMas holiday.... hope I really know what I am doing.....

Just my 2 cents.

Best regards,

Paul