140 likes | 161 Views
Site Report. Bristol University HEP group. The People. 7 Academics Brian Foster, ZEUS spokesman Greg Heath, Norman McCubbin 4 R.A.s 2 Technicians Electronic, Mechanical 10 Postgraduates. The Experiments. ZEUS Mature, data-taking, analysis BaBar Data-taking, preliminary analysis CMS
E N D
Site Report Bristol University HEP group
The People • 7 Academics • Brian Foster, ZEUS spokesman • Greg Heath, Norman McCubbin • 4 R.A.s • 2 Technicians • Electronic, Mechanical • 10 Postgraduates Jean-Pierre Melot, Bristol
The Experiments • ZEUS • Mature, data-taking, analysis • BaBar • Data-taking, preliminary analysis • CMS • Design: trigger, calorimeter • LHCb, in infancy Jean-Pierre Melot, Bristol
The Machines • Most analysis carried out at/from research centres (desy, cern, ral) • Local systems: • Sun Ultra Enterprise 450 (BaBar) • 3 processors, 2Gb, 1Tb disk space • DEC AlphaServer 1000 (Tru64 Unix) • 1 266MHz processor, 256Mb, c. 100Gb Jean-Pierre Melot, Bristol
The Machines (cont’d) • 4 DEC workstations • 1 3400AXP, 2 2300, 1 AlphaStation 250 • Aging equipment, no maintenance • 25 PCs • 20 Windows NT 4.0 workstations • 1 Dell PowerEdge 2400 dual-processor NT server • 3 Linux workstations • 1 dual-processor Linux server Jean-Pierre Melot, Bristol
The Machines (finish) • 10 Laptops! • Win9x, NT, Win2K, Linux • A number of home PCs Jean-Pierre Melot, Bristol
The Software • LSF • On 12 450MHZ NT w/s. Moderate use. • Soon on Sun Enterprise 450 • Interoperability: • Not yet developed • Samba on Unix, NFS Maestro on NT? • Common authentication? Jean-Pierre Melot, Bristol
Windows 2000 • Bristol participates in Microsoft’s “Insight” deployment program • Physics is the junior partner • Preliminary deployment at Easter • Main deployment c. September • All Undergraduate seats (>60) • Some other systems, including HEP (40) Jean-Pierre Melot, Bristol
Changes • DEC machinery nearly obsolete • Only used in ZEUS, decreasingly • Due for replacement in next rolling grant (October 2000) • Replaced by Linux systems, including file/application server? • Linux farms (CMS “grid”, general) • Existing Linux farm experience: 23 dual 400MHz processor (Polymer/Theory) Jean-Pierre Melot, Bristol
Security • 3 incidents in 1999! • Scary: Old, rogue SunOS system • Serious: 2 Slackware 4.2 (IMAPD exploit) • “Linsniffer” password-grabber. 25 passwords found in logs! All change. • Mild: 1 Redhat 6.1 (automount exploit?) • Immediate lessons: • Only trust a few users to look after systems • Use network switch technology. Eliminate hubs! Jean-Pierre Melot, Bristol
Security (cont’d) • Tighten on network hardware • Router/switch to provide IP filtering • MAC addresses bound to switch ports • Use encryption • SSL for secure mail and web access • ssh clients and servers • Other methods (SRP, Secure ftp, etc.) Jean-Pierre Melot, Bristol
Security (finish) • No multi-boot systems! • Updates can be pushed at any time • Use other methods of cross-operation • Less worldwide-accessible systems • Less user-installed systems • Researchers are not necessarily administrators • RedHat distribution • Security is an ongoing process Jean-Pierre Melot, Bristol
General Trends • Move to server-centric environment • Move back? • Files, applications, services • Easier to back up • Appliance servers • Dedicated • Simple and maintainable • Easily replaceable • Important: Authentication, File, Email, Web Jean-Pierre Melot, Bristol
General Trends (concluded) • Thin-ish clients • Centrally administered • Initial network installation (PXE) • Update push or pull • Advertising/publishing • Tools: • Windows 2000 • Linux? Jean-Pierre Melot, Bristol