1 | .TH UPDATE_SERVER 8 "30 Nov 1988" "Project Athena" |
---|
2 | \" RCSID: $HeadURL: svn+ssh://svn.mit.edu/moira/trunk/moira/man/update_server.8 $ $Id: update_server.8 3956 2010-01-05 20:56:56Z zacheiss $ |
---|
3 | .SH NAME |
---|
4 | update_server \- daemon that accepts config files from Moira |
---|
5 | .SH SYNOPSIS |
---|
6 | .B update_server |
---|
7 | .SH DESCRIPTION |
---|
8 | An |
---|
9 | .B update_server |
---|
10 | must be started at boot time on each server that is to be updated by |
---|
11 | Moira. It should be run as root. It takes no arguments, and will |
---|
12 | detach from the tty and put itself in background. It attempts to log |
---|
13 | its actions to stdout, so the output should be directed to a file if |
---|
14 | it is needed. |
---|
15 | .SH OPTIONS |
---|
16 | While there are no command line options, a configuration file |
---|
17 | .I /etc/athena/moira.conf |
---|
18 | may specify a number of options. This file may contain blank lines, |
---|
19 | comments preceeded by hash marks, boolean options, or string options. |
---|
20 | A boolean option is set by just putting the name of the option on a |
---|
21 | line. A string option is specified by putting the name of the option, |
---|
22 | some whitespace, and then the value. |
---|
23 | .IP "user username" |
---|
24 | This will set the UID of the running server to the specified user's |
---|
25 | UID. All file accesses and the execution of the instructions will be |
---|
26 | with this user's privileges. |
---|
27 | .IP "chroot directory" |
---|
28 | This will set the root directory to the specified directory for the |
---|
29 | running of the server. It uses the chroot system call, so when used |
---|
30 | in conjunction with the |
---|
31 | .I user |
---|
32 | option should make the server quite secure. |
---|
33 | .IP nofork |
---|
34 | This boolean specifies that the server should not fork when a new |
---|
35 | connection is opened. This is only useful for debugging, as when the |
---|
36 | client connection is closed, the server will exit. |
---|
37 | .IP noclobber |
---|
38 | This boolean specifies that the server is not allowed to overwrite any |
---|
39 | existing files while it is receiving datafiles and instructions. |
---|
40 | .IP noexec |
---|
41 | This boolean specifies that the server is not allowed to execute any |
---|
42 | instructions. It may receive datafiles and instructions, but not |
---|
43 | execute anything. |
---|
44 | .IP "auth user.instance@REALM" |
---|
45 | This specifies a Kerberos principal that is allowed to connect to the |
---|
46 | server. This option may be specified multiple times with different |
---|
47 | principals. If none are specified, the user |
---|
48 | .B sms |
---|
49 | in the local realm is assumed. |
---|
50 | .SH FILES |
---|
51 | /etc/athena/moira.conf \- For configuration variables. |
---|
52 | /etc/athena/srvtab \- It must be able to get rcmd Kerberos tickets. |
---|
53 | .SH "SEE ALSO" |
---|
54 | The Project Athena Technical Plan section on Moira. |
---|