Profile

Cover photo
The Linux Schools Project
411 followers|125,681 views
AboutPostsPhotosVideos

Stream

 
Weekly Update

The weekly update is a bit early this week to bring news of the latest patch that has just been released.

Patch karoshi-web-controls-150723-1211 is now available and provides the following changes:

New Module - OpenVPN

Even in 2015 we still have some programs that are not web based and are not designed to be accessed from outside of school. To cater for staff that really need access to the network from home we now have an OpenVPN module for Karoshi which can be deployed on any of your additional Karoshi servers. Once it has been deployed VPN certificates can then be created and revoked in the web management. Client devices need to have OpenVPN installed on them along with the correct certificates for the user.

At this stage it is not possible to apply this module to your main Karoshi Server. This is because we already have an openvpn setup for schools with additional domain controllers in other firewall zones, and applying this module would break that configuration.

Documentation on this module can be found here:

http://www.linuxschools.com/karoshi/documentation/wiki/index.php?title=OpenVPN_Server


New Feature - Searching E-mail Logs

This previously mentioned feature is now available in this patch and allows you to effectively track and audit any email problems.

http://www.linuxschools.com/karoshi/documentation/wiki/index.php?title=Search_E-Mail_Logs

New Feature - Automated Log Checking

The system will now periodically check syslog for any kernel errors and report them as a warning message in the web management warning section. Clicking on the warning will display the last 200 lines of the syslog with serious warnings colour coded in red.

New Feature - Mobile Web Management Warning

The mobile web management navigation has been modified to add in mobile warning messages as part of the navigation.
1
1
Indrakaran Reddy's profile photo
Add a comment...
 
Weekly Update

Last week we had to check the email logs to see if an email had been successfully sent. The web management email log search feature was not good enough to do the job and we had to manually copy the email logs off the server and un-compress them to search through the logs by hand.

This has now been rectified in the web management email log search page with multiple search criteria added and the ability to read compressed log files without having to uncompress them first.

Documentation on this feature can be found at:

http://www.linuxschools.com/karoshi/documentation/wiki/index.php?title=Search_E-Mail_Logs
1
Add a comment...
 
Weekly Update

One of our servers at school decided to stop working last weekend - the kernel had been warning of a problem in syslog for two days prior to this but we didn't notice until it was too late. The latest patch to go out adds in a scheduled  syslog check which warns you of any problems and displays a warning message in the web management warning section.

The mobile version of the web management has been modified to show warning messages to provide the same functionality as the full web version.
1
Add a comment...
 
Weekly Update

A new patch is now available that provides

Support for dynamic groups

Dynamic groups are designed to be able to be changed on a regular basis and in a learning environment might be used for class groups, year groups, house groups etc. These groups have the email ldap attributes set so can be used with the email module for sending emails to all members of a group just by typing in the group name.

Dynamic groups are created by uploading a CSV file in the format: username or staffcode or enrolment number,group1,group2,group3....

Any groups that do not already exist are automatically created and flagged as dynamic groups. Existing groups that have not been flagged as dynamic cannot be used as dynamic groups.

Z-Push

We had a problem with attachments on emails not loading correctly if accessed via Z-Push. After investigating with Karoshi V9 and V10 test servers we saw that Z-Push was working correctly on V10 but not on V9. Z-push is supposed to work with php5.3 which is the latest available to Karoshi V9 however a coding change in Z-Push for attachments meant that it would only work with php 5.4 or higher. The fix can be found at https://github.com/fmbiete/Z-Push-contrib/pull/202
1
Add a comment...
 

Weekly Update

Having tested adding in folders to gluster volumes it seemed strange that folders that are for samba shares are not automatically made available on the other servers in the gluster volume. This has now been changed to automate the process so that samba shares are now automatically created to match the shares on the existing path.

We also had a request to be able to reset the acceptable use status for users for schools that want students and staff to sign an acceptable use policy each year. This has now been added to the web management.

DHCP reservations now has a bug fix to stop static reservations for mac and TCPIP addresses being added more than once.
1
Add a comment...
Have them in circles
411 people
vaishali shiledar's profile photo
Anuar “Xers” l33t's profile photo
Alexander K's profile photo
TrueAbility's profile photo
滄海易(George Smith)'s profile photo
arunkumar s's profile photo
Jeff James's profile photo
Daniel Wicks's profile photo
Cody Varns's profile photo
 
Stepping down by +Robin McCorkell

My work with The Linux Schools Project has been in my free time while at school at DGSB. However, the time has now come for me to go to university, so I won't be in regular contact with the rest of the project and I feel that the quality of the project would deteriorate as a result. It is therefore time, I feel, for me to step down as Karoshi Client maintainer.

I've had a really great time working with +Paul Sharrad , Jo Sharrad, Artie Ball, and the other numerous contributors to the project over the years. Linux in Schools is stronger than ever, with even the most Microsoft-centric schools in the UK now considering open source technologies as budgets are squeezed and cloud services becoming more prominent. I think The Linux Schools Project is a pioneer in that, and it will only get better from here.

At the moment, I'm working at ownCloud, so my work will still indirectly improve Karoshi. In addition, I'm still trying to get various patches merged to Samba, SOGo, Squid and other projects, so in a few releases time perhaps that code will arrive on your servers.

https://github.com/the-linux-schools-project/karoshi-client/commit/8c3555c06cb326d839baef224d0a2cd3a8a4e6a7

Robin McCorkell, signing off.
1
Paul Sharrad's profile photoKyle Withers's profile photo
2 comments
 
A shame to see you going Robin, your work and dedication was a feat to be reckoned with! Good luck to your successor, and good luck to you with all your future work, I'm sure we will be seeing your name in important places :)
Add a comment...
 

Weekly Update

We are working on a new sub release for the Karoshi Client

We had a few problems with version 4.3 which we would like to address in 4.4.

Lightdm

Lightdm was causing problems in 4.3. It lagged considerably when tabbing between the username and password boxes. After a user had logged out after a twelve second wait the keyboard would stop responding unless you clicked on the language selector at which point another user could log in. We could not find anyone else with a problem that matched this and it was not a problem in the 4.2 release.

We are currently experimenting with using KDM instead. This has solved the problems above but has introduced new problems with starting scripts via upstart which no longer want to start!

Offline Mode

The client has an offline mode that caches credentials of previously logged in users and allows them to log in when disconnected from the network. This can be useful for client computers that are not always connected to the network.

The problem we have is the check to see if the network connection is available or not. The client checks if the netlogon share is available and goes into offline mode if the connection fails.

We have found that on some network ports depending on switch configuration the port can take up to 30 seconds to establish. The client has already booted in that time and the operating system says the network is available even though it is still being established – the netlogon check then fails resulting the client going into offline mode.
1
Add a comment...
 
ownCloud 8.1 brings some big improvements, especially for Samba connectivity to home shares. It is highly recommended you upgrade when the update rolls around, but for those who cannot 8.0 and 7.0 will still be supported for a while to come.
 
We're just one week from #ownCloud Server 8.1 - help us spread the word on the new release!
ownCloud provides universal access to your files via the web, your computer or your mobile devices — wherever you are. It also provides a platform to easily view & sync your contacts, calendars and bookmarks across all your devices and enables basic editing right on the web. Through apps, you can extend ownCloud Server and make it your own!
2 comments on original post
1
1
Juan Fortuna's profile photo
Add a comment...
 
Weekly Update

We had a problem last week with a system update that modified a config file. The nslcd package was the culprit and this time it was modifying /etc/nsswitch.conf stopping servers from seeing ldap users from samba4. This resulted in a quick patch being released to restore nslcd.conf to it's correct settings. In addition nslcd.conf has been added to the updateserver script which checks config files for changes and restores the original files if they have been modified by an update.
1
Add a comment...
 

Weekly Update

ZFS

Originally ZFS did not support posix ACLs on Linux which meant that we had to create ext4 partitions on top of ZFS volumes which negated a lot of the benefits of ZFS. Since version 6.3 ZFS now has posix support so the ZFS provision in the web management has been modified to create pure ZFS volumes.

Radius Module

Continuing with the aim of providing as much redundancy as possible the radius module can now be applied to any domain controllers on your system and access point / 802.1x device settings are synchronised between them so that your radius access devices can be set up with multiple radius authentication points.

Thunderbird

The Karoshi Linux client has had full Thunderbird / SOGo integration out of the box for a long time and it seemed a shame that we did not have an easy way of doing the same for windows clients. After some logonscript development over the weekend we now have the potential to auto configure windows clients for Thunderbird in the same way that the Linux clients are configured.
2
1
Den Zuk's profile photo
Add a comment...
 
Weekly Update

We had some problems this week with the version of Samba 4 we have in our Linux Schools repository. Although it is the same version as in the Debian repos a later version appeared in another repository that was not correctly installing during updates. Robin - our Karoshi Client maintainer rose to the challenge and is automating creating a deb version of the latest version from the samba website.


1
Add a comment...
 

Weekly Update

Drive letters for Windows Clients

Having decided that Windows drive letters were not important – shows how you need to get as much feedback as possible, we had a request to be able to assign drive letters to shares instead of auto assigning them. The network shares page now allows you to allocate drive letters to shares instead of just auto assigning them.

ZFS and Gluster

We had a drive showing some bad sectors at school which is part of a ZFS array. Just to be on the safe side I decided to simulate this problem on a test server to make sure that the drive could be replaced using the web management. I added a some drives to one of my virtual servers and started up the test pair of servers which are running the latest Karoshi version which automatically sets up Gluster volumes for key folders like netlogon and sysvol. I then proceeded to create a ZFS volume for /home on the main server just to test a failed drive. The procedure worked as expected – all the data was copied onto the new ZFS array that is now mounted as /home – this included the gluster volumes which use /home/gluster/volumes/volname to store their data on. Not surprisingly trying to move the backend data for a gluster volume while it was running in this way resulted in a complete gluster volume failure!

After playing around with re-creating gluster volume ID's I decided to give up on that and totally delete the gluster volume information and get gluster to just heal itself. Gluster – I love it! - well I would if it wouldn't keep using ports reserved for other services but that’s another story...

A patch with fixes for the above is about to be released.
2
Aurélien Jaulent's profile photo
 
thanks 
Add a comment...
People
Have them in circles
411 people
vaishali shiledar's profile photo
Anuar “Xers” l33t's profile photo
Alexander K's profile photo
TrueAbility's profile photo
滄海易(George Smith)'s profile photo
arunkumar s's profile photo
Jeff James's profile photo
Daniel Wicks's profile photo
Cody Varns's profile photo
Contact Information
Contact info
Email
Story
Tagline
Linux for schools, both servers and clients
Introduction
A Linux based operating system designed around the everyday needs of administrators of networks in education created and maintained by people who work in schools everyday.

Install a server or set of servers based on your school needs then administrate it via a web browser. Being a modular based system you can pick and chose from various server modules to install, choosing as few or as many as you like and mixing and matching modules depending on your preferences and environment.

We aim to provide :

  • Simple, secure web interface – Allowing you to control your network worldwide.
  • Configured modules, just click and go.
  • No license fees! The system and all of its features are free.
  • No need for in depth knowledge of Linux server administration.
  • The continued use of your current computers.
  • Windows and Linux compatibility.
  • The stability of being remastered from Ubuntu LTS.
  • Downloadable Source-Code hosted on GitHub

The Linux Schools operating system currently provides fully configured: 

Primary Domain Controller(Samba4), Additional Domain Controllers(Samba4), Active Directory, Groupware(SoGo), eMail(DoveCot/IMAP), E-Learning(Moodle), DHCP with failover, External Access to files(Owncloud), Website(Joomla), Printing(CUPS),Internet Proxy(Squid), Filtering(e2guardian with failover), Radius, Digital Signage(Xibo), Operating System Distribution, Reverse Proxy(NGINX), Monitoring with eMail and SMS alerts, Distributed Storage Systems(Gluster FS).

If there are any extra features you feel we should provide, please post them on the feature request section of the forum found here: Linux Schools Feature Request Board.