Debian Edu Networked common packages

Autofs controls the operation of the automount daemons. The automount daemons automatically mount filesystems when they are used and unmount them after a period of inactivity. This is done based on a set of pre-configured maps.

The kernel automounter implements an almost complete SunOS style automounter under Linux. A recent version of the kernel autofs4 module (builtin or separate) is required.

This is the LDAP module of the autofs.

このパッケージは、共有されたリモート CUPS プリンターの Bonjour ブロードキャ ストをブラウズし、ローカルで使用可能とします。CUPS 1.6.x で廃止された CUPS ブロードキャスティング・ブラウジングを置き換えるものです。この方法により、 リモートプリンターを自動的に使用可能にする古い振る舞いは Bonjour により再実 装されます。

cups-browsed は、CUPS >= 1.6 クライアントに後で CUPS < 1.6 サーバのプリン ターリストを (BrowseLocalProtocols にある古い 'cups' プロトコルを使って) 閲 覧できるようにするのにも使えます。

cups-browsed は、CUPS >= 1.6 サーバが CUPS < 1.6 クライアントにプリンターリ ストを (BrowseLocalProtocols にある古い 'cups' プロトコルを使って) ブラウズ できるようにするのにも使えます。

The Common UNIX Printing System (or CUPS(tm)) is a printing system and general replacement for lpd and the like. It supports the Internet Printing Protocol (IPP), and has its own filtering driver model for handling various document types.

This package provides the parts of CUPS which are needed for driverless printing on IPP printers with common data formats.

A metapackage containing dependencies for packages required on all installations in the Debian Edu Blend.

killer is a perl script that gets rid of background jobs. Background jobs are defined as processes that belong to users who are not currently logged into the machine. Jobs can be run in the background (and are exempt from killer's actions) if their scheduling priority has been reduced by increasing their nice(1) value or if they are being run through condor.

When the package is installed, a cron job is installed to run killer once an hour.

Kerberos is a system for authenticating users and services on a network. Kerberos is a trusted third-party service. That means that there is a third party (the Kerberos server) that is trusted by all the entities on the network (users and services, usually called "principals").

This is the MIT reference implementation of Kerberos V5.

This package contains the basic programs to authenticate to MIT Kerberos, change passwords, and talk to the admin server (to create and delete principals, list principals, etc.).

本パッケージは OpenLDAP (Lightweight Directory Access Protocol) パッケージ 由来のユーティリティを提供します。このユーティリティでローカルまたはリモー トの LDAP サーバにアクセスできます。LDAP サーバへのアクセスに必要なクライア ントプログラムのすべてが含まれます。

ぱっと見た限り、ldapvi は、ldapsearch のように見えます。ldap データベースで エントリを検索できます。しかし、入手した結果は、設定したエディタで開かれ、 そこからエントリの変更、追加又は削除が可能です。 その後、エディタを終了すると、ldapvi は KDIF としての変更点の閲覧、 変更点の反映又は無視という複数のオプションを提示します。

This package provides a Name Service Switch module that allows using an LDAP server to provide user account, group, host name, alias, netgroup, and basically any other information that would normally be retrieved from /etc flat files or NIS.

Cyrus SASL API の実装のバージョン 2.1 です。より詳しい情報は libsasl2-2 パッケージと RFC 2222 を参照してください。

本パッケージは MIT Kerberos 5 ライブラリでコンパイルされた GSSAPI プラグイ ンを提供します。

Munin is a highly flexible and powerful solution used to create graphs of virtually everything imaginable throughout your network, while still maintaining a rattling ease of installation and configuration.

This package contains the daemon for the nodes being monitored. You should install it on all the nodes in your network. It will know how to extract all sorts of data from the node it runs on, and will wait for the gatherer to request this data for further processing.

Munin is written in Perl, and relies heavily on Tobi Oetiker's excellent RRDtool. To see a real example of Munin in action, you can follow a link from http://munin-monitoring.org/ to a live installation.

NFS を使うマシンは、クライアントまたはサーバのどちらであっても本パッケージ を使ってください。含まれているプログラム: lockd, statd, showmount, nfsstat, gssd, idmapd, mount.nfs

netgroup データベースからホスト、ユーザ、ドメインのダンプおよび検索を行う ためのツールが含まれます。netgroup ツールは、netgroup の全メンバーをリスト するために使われます。一方、innetgr ツールは、入力したユーザ/ホストが netgroup のメンバーかどうかチェックするために使われます。

This package provides a daemon for retrieving user accounts and similar system information from LDAP. It is used by the libnss-ldapd and libpam-ldapd packages but is not very useful by itself.

nvram-wakeup は、BIOS 中の起動時間を読み書き可能です。(2.4.x カーネルでは /dev/nvram 経由または直接 I/O ポートにアクセス) 起動時間には、コンピュータは自動で soft-off 状態から起動されます。 ビデオディスクレコーダ VDR に対して、nvram-wakeup はフックスクリプトを インストールするので、VDR は、電源断時に起動時間をセットできます。

Secure Shell プロトコルのフリーな実装である OpenSSH の移植版です。同プ ロトコルは IETF secsh ワーキンググループで仕様が策定されました。

Ssh (Secure Shell) は、リモートマシンにログインしたり、リモートマシン 上でコマンドを実行するためのプログラムです。 安全でないネットワーク越しに、信頼できない 2 ホスト間の、安全で暗号化 された通信を提供します。X11 の接続や、任意の TCP/IP ポートについても、 安全な経路越しに転送することができます。 アプリケーションに安全な通信経路を提供するために使うことができます。

本パッケージには、sshd サーバが含まれます。

いくつかの国では、特別な許可なく暗号を使用することは、いかなる場合でも 違法とされる可能性があります。

sshd は、安全でないプログラムである rshd を置き換えます。これはほとんどの用 途で時代遅れです。

p910nd is a small daemon that copies any data received on the port it is listening on to the corresponding printer port.

It is primarily intended for diskless Linux hosts running as printer drivers but there is no reason why it could not be used on diskful hosts.

Port 9100 is copied to /dev/lp0, 9101 to /dev/lp1 and 9102 to /dev/lp2. The default is port 9100 to /dev/lp0.

With this tool you can schedule regular shutdowns of workstations in the evening, and also wake them up every morning, using either nvram-wakeup, ACPI wakeup or wake-on-lan.

For the wake-on-lan wake-up sequence you need one awake machine on your local network / subnet. This can be a server machine or a client machine that got just previously woken up by nvram-wakeup.

The shutdown sequence will be initiated hourly after 4pm via a CRON job. However, only machines that appear inactive / unused will be shut down. Machines that are currently in use will remain up and running.

The Shutdown-at-Night tool can be activated via a config file or via membership in a NIS netgroup called shutdown-at-night-hosts.

sitesummary システムにより、各マシンに自分の存在を一日一度中央収集マシン に報告させ、この収集プログラムにホストに関する集計を作成させることにより、 多数のマシンの追跡が容易になります。

本パッケージはクライアント部であり、ブート後および一日に一度サーバに 報告します。

Sudo is a program designed to allow a sysadmin to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow people to get their work done.

sudo-ldap will be supported up to Debian 13 "trixie" and will be removed in Debian 14. Please do not use sudo-ldap for new installations and consider migrating your existing installations to libsss-sudo and sssd.

This version is built with LDAP support, which allows an equivalent of the sudoers database to be distributed via LDAP. Authentication is still performed via pam.

The SMB/CIFS protocol provides support for cross-platform file sharing with Microsoft Windows, OS X, and other Unix systems.

This package provides utilities for managing mounts of CIFS network file systems.

Fail2ban monitors log files (e.g. /var/log/auth.log, /var/log/apache/access.log) and temporarily or persistently bans failure-prone addresses by updating existing firewall rules. Fail2ban allows easy specification of different actions to be taken such as to ban an IP using iptables or hostsdeny rules, or simply to send a notification email.

By default, it comes with filter expressions for various services (sshd, Apache, proftpd, sasl, etc.) but configuration can be easily extended for monitoring any other text file. All filters and actions are given in the config files, thus fail2ban can be adopted to be used with a variety of files and firewalls. Following recommends are listed:

• iptables/nftables -- default installation uses iptables for banning. nftables is also supported. You most probably need it
• whois -- used by a number of mail-whois actions to send notification emails with whois information about attacker hosts. Unless you will use those you don't need whois
• python3-pyinotify -- unless you monitor services logs via systemd, you need pyinotify for efficient monitoring for log files changes

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects like FreeIPA.

This package provide the nss library to connect to the sssd daemon.

This package provides the means for Linux workstations to locally authenticate using an enterprise identity when the network is unavailable. Used in conjunction with the nss_updatedb utility, it provides a mechanism for disconnected use of network directories. They are designed to work with libpam-ldap and libnss-ldap.

This module is aimed at environments with central file servers that a user wishes to mount on login and unmount on logout, such as (semi-)diskless stations where many users can login.

The module also supports mounting local filesystems of any kind the normal mount utility supports, with extra code to make sure certain volumes are set up properly because often they need more than just a mount call, such as encrypted volumes. This includes SMB/CIFS, FUSE, dm-crypt and LUKS.

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects like FreeIPA.

This package provide the pam module to connect to the sssd daemon.

実行中のプログラム向けに passwd, group および host の検索を行い、その結果を 次の問い合わせに備えてキャッシュします。LDAP, NIS や NIS+ といった低速な サービスを利用している場合にのみ本パッケージをインストールすべきです。

Open Computer and Software Inventory Next Generation is an application designed to help a network or system administrator to keep track of the hardware and software configurations of computers that are installed on the network. It also allows deploying software, scripts and files on client computers.

This package contains the client part.