k12ltsp.org site is dead/for sale
(too old to reply)
Jim Kinney
2017-07-23 19:55:59 UTC
While I'm not actively setting up a k12 LTSP school right now, I am
setting up Linux thin clients based from a CentOS 7 server for a bunch
of grad students to use.

If the owner(s) of the k12ltsp.org content want it to be hosted again,
I am happy to provide space. I have purchased domains k12ltsp.net and
k12ltsp.us. The current owner of k12ltsp.org wants $500. schmuck.

I'm needing an excuse to increase my bandwidth at my home anyway. :-)
James P. Kinney III

Every time you stop a school, you will have to build a jail. What you
gain at one end you lose at the other. It's like feeding a dog on his
own tail. It won't fatten the dog.
- Speech 11/23/1900 Mark Twain

Lars Schade
2017-09-08 22:26:49 UTC

have you been successful with your TC-setup under CentOS 7?
Do you care to share/document your experience - I would appreciate!

Regards, Lars
Jim Kinney
2017-09-09 13:12:46 UTC

I made a very manual first run and got a working client. Lots of bugs to work out. I have a very specific need to have selinux running in enforcing mode on the clients. Yeah, that blew up in my face! Lot's to do on that.

Biggest fail is using an installer initrd image. That will need to be replaced with a version that is more secured. The ftp root needs MUCH work. Another specific need for me is user authentication from ipa. That will probably not be super hard to "bake in" but will need some more research so I know where all the pieces need to be placed. I suspect each client will need an autoenroll process. The challenge there is there's no mechanism in ipa to store certs for multiple machines in the same file on a shared root filesystem. So a client will need a sequence of personality mounts on boot to get detailed content. That will require some scripting on the server end to manage and deploy that structure. The other part I'm not sure about is /dev/random pool depletion. It's essential to my security needs for encryption tokens (kerberos keys, ssl/tls communications of huge mounted filesystems) and multiple users each eat up randomness for each connection (yes. I also need encryption between thin clients and home server).

Applications: this was a generic yum group install "server with gui" chroot of centos 7 for the clients to run on. All the k12 stuff was not there but could be easily added.

Sorry actual details are non existent here. My notes on this are at work and I'm just on my phone, slurping coffee on a Saturday morning. More, much more, later.

Hmm. I need to get the site loaded onto my server for data sharing. Probably not this weekend. Spent most of last weekend migrating to a new web server and have all of those normal weekend chores still to do.

Oh. Other than a pile of old laptops, mac book pro and some Thinkpads, I'm looking to use these for clients:

Post by Lars Schade
have you been successful with your TC-setup under CentOS 7?
Do you care to share/document your experience - I would appreciate!
Regards, Lars
K12OSN mailing list
For more info see <http://www.k12os.org>
Sent from my Android device with K-9 Mail. All tyopes are thumb related and reflect authenticity.