Let us discuss the first case in greater detail with an example: all mail servers, such as postfix or sendmail are said to“provide” the mail-transport-agent virtual package. Thus, any package that needs this service to be functional (e.g. a mailing list manager, such as smartlist or sympa) simply states in its dependencies that it requires a mail-transport-agent instead of specifying a large yet incomplete list ofpossible solutions (e.g.postfix | sendmail | exim |…). Furthermore, it is useless to install two mail servers on the same machine, which is why each of these packages declares a conflict with the mail-transport-agent virtual package. The conflict with itself is ignored by the system, but this technique will prohibit the installation of two mail servers side by side.. COMMUNITY Encouraging the adoption of.deb. In practice, the servers running Squeeze are configured with the“miracle combination” above, and are kept up to date automatically. Only the most critical servers (the firewalls, for instances) are set up withapticron, so that upgrades always happen under the supervision of an administrator.. In order to do this, the program is structured in two parts: a daemon running as root handles activation and configuration of network interfaces and a user interface controls this demon. Only members of the“netdev” group have permissions to control this program.. Each significant line of the /etc/inetd.conf file describes a server through seven fields (separated by spaces):. # here. Please note that the kernel support for MPPE must also be present!. vpn pptp f@Lc3au *. 188.8.131.52. Accepting or Refusing Based on the Announced Sender. Table 11.3. Configuration oflibpam-ldap. the sde disk, 4 GB, is also entirely available;. OS type: Linux. These features can be combined to isolate a whole process family starting from theinit process, and the resulting set looks very much like a virtual machine. The official name for such a setup is a“container” (hence the LXC moniker:LinuX Containers), but a rather important difference with“real” virtual machines such as provided by Xen or KVM is that there’s no second kernel; the container uses the very same kernel as the host system. This has both pros and cons: advantages include the total lack of overhead and therefore performance costs, and the fact that the kernel has a global vision of all the processes running on the system, so the scheduling can be more efficient than it would be if two independent kernels were to schedule different task sets. Chief among the inconveniences is the impossibility to run a different kernel in a container (whether a different Linux version or a different operating system altogether).. You should also have a look at the dedicated Debian wiki page as well as Russel Coker’s blog, who is one of the most active Debian developers working on SELinux support.. ALTERNATIVE CDBS. We’d like to conclude on a personal note. Writing (and translating) this book took a considerable amount of time out of our usual professional activity. Since we’re both freelance consultants, any new source of income grants us the freedom to spend more time improving Debian; we hope this book to be successful and to contribute to this. In the meantime, feel free to retain our services!.