From owner-freebsd-config Thu Jan 29 18:56:56 1998 Return-Path: Received: (from daemon@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA22411 for config-outgoing; Thu, 29 Jan 1998 18:56:56 -0800 (PST) (envelope-from owner-config) Received: from word.smith.net.au (vh1.gsoft.com.au [203.38.152.122]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA22394 for ; Thu, 29 Jan 1998 18:56:49 -0800 (PST) (envelope-from mike@word.smith.net.au) Received: from word (localhost [127.0.0.1]) by word.smith.net.au (8.8.8/8.8.5) with ESMTP id NAA00906; Fri, 30 Jan 1998 13:19:54 +1030 (CST) Message-Id: <199801300249.NAA00906@word.smith.net.au> X-Mailer: exmh version 2.0zeta 7/24/97 To: Adam Turoff cc: config@freebsd.org Subject: Re: WebAdmin (was: RE: /usr/src/release/sysinstall needs YOU. :-)) In-reply-to: Your message of "Wed, 28 Jan 1998 11:16:00 PST." <34D0D540@smginc.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Fri, 30 Jan 1998 13:19:53 +1030 From: Mike Smith Sender: owner-config@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > OK. Enough goading. :-) OK. 8) I saved this mesasge because it's a good place to start plugging Juliet again. 8) > I don't feel qualified enough to start down this path alone. There > are a lot of nontrivial security issues to deal with, and a lot of > nontrivial configuration issues to deal with, too. This becomes easier when you layer the security issues. I would stop worrying about them for starters. > Here are a few things I'd like to see in a web-based admin tool: > - DNS administration > - user config > - NFS config > - mounting > - mirroring Each of these can be considered in two parts; the backend which manipulates the current configuration "database", and the frontend which provides the window-dressing for the user. The backend for any of the above can be trivially implemented as a module inside the juliet framework. The frontend is up to the HTML people out there. 8) > - apache config (?) > - samba config (admin-loadable module? :-) ) Modules can come from anywhere, even packages. > - lynx friendly This is an issue for frontend design. It means that you need to rule out any client-side smarts at all in the frontend. > - config replication (act like that machine there) LDAP makes this *very* easy. > - ports management That's really just another module. > My questions to -hackers at large would be: > - any other admin type things that should be included? > - any other security issues that should be considered? > - ideas for extensibility? > > Hopefully I should have something started in a few weeks. Please don't start until you've looked at what's already on the table; it'd be nice to coordinate things. I'd suggest subscribing to -config and brawling it out there where it's meant to be. > Rhythm deficient bassist for Necessity & the Mothers of Invention Argh. More musicians. 8) -- \\ Sometimes you're ahead, \\ Mike Smith \\ sometimes you're behind. \\ mike@smith.net.au \\ The race is long, and in the \\ msmith@freebsd.org \\ end it's only with yourself. \\