I'm attempting to install a static route for a Mac Pro desktop. I'm using Route Split 1.4, which creates a startup script called /etc/routes.sh (The SH script does actually wait for the interface to come online before applying its changes). However, after i reboot, I lose the static route I entered. Here's what I get in the /var/log/system.log. Jan 22, 2018 Here's some more 'law enforcement' work. Keep in mind that I live with my parents, a 16+ year-old dog (now dead), my cat, run a website dedicated to nerd shit, and am disabled; there is exactly ZERO reason anyone would ever think that I am involved in any sort of criminal activity.
- System Library Coreservices Loginwindow.app Contents Macos Loginwindow Version
- System Library Coreservices Loginwindow.app Contents Macos Loginwindow 10
Information Technology Services Technical Notes |
How to Install and Configure pvattach
For help or if you have questions or problems, please contact theSolution Center, 195 Durham Center, [email protected] or call ITServices at 294-4000.
System Library Coreservices Loginwindow.app Contents Macos Loginwindow Version
pvattach can perform three functions:- mount one or more AFS directories
- mount one or more AFP volumes
- control login access
These three functions can be combined together, in pairs or performedseparately. When executed at login, pvattach can be used to controlaccess to a machine and mount the necessary directories or volumes for theuser logging in.
The default configuration file will mount your AFS home directory on theDesktop. See the appropriate sections below for instructions on whatto modify to alter the default behavior.
Kerberos must also be enabled and configured (both Kerberos 4 and Keberos 5).
You must also install MIT's Mac OS X Kerberos Extras.
See How to Configure Kerberos.
You must also install MIT's Mac OS X Kerberos Extras.
See How to Configure Kerberos.
- the pvattach configuration file(edu.iastate.pvattach.plist in ~/Library/Preferences)
- the pvdetach script and other support programs (in /usr/athena/binand /usr/athena/etc)
- the (Iowa State based) hesiod configuration file (in /etc)
You can download IT Services' installer fromhere.
To install, follow these steps:
- Double-click on the pvattach.pkg package installer to install thesoftware required by pvattach.
- Drag the pvattach application to the Applications folder(/Applications) on your hard disk.
- If you want the pvattach application to execute during login, addthe pvattach application to either your Mac OS X 10.3 Startup Itemsor your Mac OS X 10.2 Login Items.
- If you are mounting AFS directories at login, then you need to configure the system to use the 'pvdetach' script (which will unmountthe AFS directories at logout):
sudo defaults write /Library/Preferences/com.apple.loginwindow
LogoutHook '/usr/athena/etc/pvdetach'If you previously installed pvattach and followed the oldinstructions to edit the /etc/ttys file to manually to add the'LogoutHook', undo that edit now:
We no longer recommend editing the /etc/ttys file directly. The'defaults write' command is the preferred method to install login andlogout hooks.sudo pico -w /etc/ttys
- change (all as one line):
console '/System/Library/CoreServices/loginwindow.app/Contents/MacOS/loginwindow
−LogoutHook /usr/athena/etc/pvdetach'vt100 on secure window=/System/Library/CoreServices/WindowServeronoption='/usr/libexec/getty std.9600' - to (all as one line):
console '/System/Library/CoreServices/loginwindow.app/Contents/MacOS/loginwindow'vt100 on secure window=/System/Library/CoreServices/WindowServeronoption='/usr/libexec/getty std.9600'
- change (all as one line):
This default configuration will mount the user's home AFS directory.You will need to alter pvattach's configuration file if you do not wantthis default behavior. The configuration file can be edited by the'Property List Editor' program, from the command line using vi or pico,or by an editor program. The 'Property List Editor' program isinstalled from the Mac OS X Developer's CD.AFS Mounting<?xml version='1.0' encoding='UTF-8'?>
~
<!DOCTYPE plist PUBLIC '-//Apple Computer//DTD PLIST 1.0//EN' 'http://www.apple.com/DTDs/PropertyList-1.0.dtd'>
<plist version='1.0'>
<dict>
<key>AFSMount</key>
<array>
<string>::
~/Desktop</string>
</array>
</dict>
</plist>
AFS Mounting | ||
---|---|---|
Key | String | Meaning |
AFSMount | afs: osxafs :: osx | Mount AFS directory |
: | means to do the symlink only if it does not exist | |
:: | means to do the symlink only if it is an exsiting symlink | |
for afs: | ||
~ | represents users AFS home directory | |
~user | represents user's AFS home directory | |
~user/xyz | represents user's AFS xyz directory | |
/afs/iastate.edu/... | represents fully qualified AFS directory | |
for osx: | ||
~ | represents /Users home directory |
Accessing Your AFS Files
If you are having trouble getting full read-write access to your fileson AFS, you may want to set your local uid to match that of your uidthat is used on the AFS file system. To ease this process, we stronglyrecommend you have an Administrator account that is not thesame as the one you are using to access the AFS file system.
- Login with an Administrator account that is not the one you arechanging the uid on.
- Enter the following command in Terminal(/Applications/Utilities/) to find your uid number:
where net-id is your Iowa State Net-Id (or the Net-Id of the AFSuser you are chaning the uid of).Write down the 'id:' number from the output of this command. This is yournew-uid.pts examine
net-id - Run 'NetInfo Manager' (/Applications/Utilities/)
- In the left column, select
/
- In the middle column, select
users
- In the right column, select your net-id
- Authenticate by clicking the lock icon (on the bottom left-handcorner of the window) that is next to the text that says 'Click the lockto make changes'.
- Under the 'Property' list, find the line that contains 'uid'.Write down the 'Value' number. This is your old-uid.
- Double-click the uid value and change it to the new-uid value.
- Save your changes (Domain -> Save Changes) and quit NetInfo Manager.
- In the left column, select
- Enter the following command in Terminal (/Applications/Utilities)to set the appropriate file ownership permissions:
replacing old-uid and new-uid in this command with thevalues that you wrote down.sudo find / -xdev -user
old-uid-print -exec chown
new-uid{} ;
- If you have any other drives connected to your machine, enter theabove command to correct file ownership permissions there too. But, inplace of
/
in the command use/Volumes/
volume-name, where volume-name isthe name of the drive. For example, for the 'Stuff' drive, you woulduse/Volumes/Stuff
. - Logout from the Administrator account.
AFP Mounting
AFP Mounting | ||
---|---|---|
Key | String | Meaning |
AFPMount | account: password@server/ volume@server / volume | Mount AFP directory |
When account
Replace all blanks in volume with the string '%20'. For example,the volume 'Shared Items' would be specified as 'Shared%20Items'.
:
password is not specified, thesystem will prompt you for the account and password.Replace all blanks in volume with the string '%20'. For example,the volume 'Shared Items' would be specified as 'Shared%20Items'.
Access Control | ||
---|---|---|
Key | String | Meaning |
pvaccess | Yes No | Check access control? |
AccessDenied | file-name | Image to display when access is denied |
AccessGranted | file-name | Image to display when access is granted |
If file-name is not fully qualified, it isassumed to be in
/Library/Desktop Pictures/
.An example configuation file to control login access is:
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE plist PUBLIC '-//Apple Computer//DTD PLIST 1.0//EN' 'http://www.apple.com/DTDs/PropertyList-1.0.dtd'>
<plist version='1.0'>
<dict>
<key>pvaccess</key>
<string>YES</string>
</dict>
</plist>
System Library Coreservices Loginwindow.app Contents Macos Loginwindow 10
Creating the Access Control List
For each Mac OS X system that you are controlling the loginaccess on, you will need to create an ACL that is named the same asthe third and fourth part of the domain name of the Mac OS X system.For example, for a Mac OS X system that has the domain name of
macosx.its.iastate.edu
, you would create an ACL with thename of macosx.its
.You can create the ACL two different ways:
- via the web at URLISU Acropolis: List.
- Click on the link 'Create a List' and fill in:
List: acl-name (for example, macosx.its
)Description: Mac OS X pvaccess (you can use any description that you want) Owner: net-id (where net-id is your Iowa State Net-Id) then click on the 'Create list' button. - Under 'Properties', check the 'Access (login/print)' check-box:
then click on the 'Update Now' button.
(properties in red are protected)Disabled Access (login/print) Auto Generated Hidden Mail Dept Public Majordomo Major AFS Group Class Sticky NFS Group User - Click on the 'Get Members' button at the top of the webpage:
- Under 'Member', add the Net-Id for each user (one Net-Id at a time)that you want to allow login access. You may also specify the name ofanother list previously created in place of the Net-Id.
Member: net-id (where net-id is an Iowa State Net-Id) then click on the 'Add' botton.
- Under 'Member', add the Net-Id for each user (one Net-Id at a time)that you want to allow login access. You may also specify the name ofanother list previously created in place of the Net-Id.
- Click on the 'Logout' button when finished.
- Click on the link 'Create a List' and fill in:
- via the
chlist
command on a Project Vincentworkstation. If you don't have access to a workstation in your area,you can telnet toisua.iastate.edu
using the Terminalapplication (in /Applications/Utilities):
Then typetelnet -f isua.iastate.edu
man chlist
for more information.
Copyright © 1995-2008, Iowa State University of Science and Technology. All rights reserved. |