Manualshelf

Service manual

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE DIRECTORY SERVER 7.0 - DEPLOYMENT
919293949596979899100
Keeping Accurate Time
100 Sun ONE Directory Server Installation and Tuning Guide • June 2003
Disabling Unnecessary Services
For top performance and less risk, dedicate the system to Directory Server alone.
Running additional services, especially network services, negatively affects server
performance and scalability, and may increase security risks.
Disable as many network services as possible. Directory Server uses only TCP/IP
and does not require file sharing and other services. Disable services such as IP
Routing, Mail, NetBIOS, NFS, RAS, Web Publishing,and Windows Network Client
services. On Windows in particular, stop and disable all services except for Event
Log, Plug and Play, Protected Storage, Security Accounts Manager, Sun ONE
Administration Server, Sun ONE Directory Server, Remote Procedure Call (RPC),
and SNMP. Consider disabling
telnet and ftp.
As with many network services,
telnet and ftp pose security risks. These two
services are particularly dangerous in that they transmit user passwords in clear
text over the network. You may be able to work around the need
telnet and ftp
by using clients such as Secure Shell (ssh)andSecureFTP(sftp)instead.
If the Directory Server instance does not itself provide the naming service for the
network, consider enabling a naming service for the system. Remote
administration tools such as Sun ONE Server Console rely on the naming service
for some aspects of their operation such as translating between IP addresses and
host names.
Refer to the operating system documentation fordetails on disabling network
services.
Keeping Accurate Time
Ensure the system clock is reasonably in sync with those of other systems to
facilitate replication and correlation of date and time stamps in log files between
systems. Consider using a Network Time Protocol (NTP) client to set the correct
system time, for example, especially on Windows systems.
Restarting After System Failure
When possible, stop Directory Server as described in the Sun ONE Directory Server
Administration Guide. Database corruption may cause Directory Server to start
slowly if stopped abruptly during system shutdown, rather than shut down
appropriately. Time may be needed to recover the database.