Survey

Frank Peters fwp1 at CC.MsState.Edu
Tue Sep 11 05:04:22 AEST 1990 

In article <richard.652960541 at fafnir.la.locus.com> richard at locus.com (Richard M. Mathews) writes:

   It is my understanding that this group is for discussions of Unix on large
   machines (how large is large?).  I'd be interested in starting things off
   by finding out what large machines and what versions of Unix you have out
   there.  For what do you use these systems?

   We have AIX/370 running on 370s including a 3090.  We have been working
   with IBM to develop AIX on these machines.  Since we use VM to run lots
   of small virtual machines in different configurations, perhaps we don't
   count as users of "large Unix" (except when helping a customer who IS
   using a large system).  As a supplier of such systems, we are, however,
   very interested in the opinions and needs of such users.

   What other large systems are out there?  What sorts of problems do you
   have that you feel are unique to users of large systems?

Well, we are developing a different kind of 'large system' that has
its own unique complexities.

We are in the process of migrating from a mainframe environment to a
distributed environment of UNIX servers and workstations.  Though none
of these systems taken individually are what I would call large
(though I wouldn't call a Sun 4/490 small either), taken together they
add up to more power and complexity than any mainframe I'm familiar
with.

There are a great many issues that are addressed in typical mainframe
operating systems (and perhaps by big iron unices like UTS and
AIX/370) that are all but ignored in the typical mini and workstation
implementations of UNIX.

I would hope that discussion of how varius users have addressed the
following issues would be appropriate to this group.

(1)  Operator driven UNIX.  The concept of a machine room operator is
     ingrained in most mainfram operating systems.  The concept of a
     large installation in which many of the day to day administration
     tasks are performed by operators in a machine room rather than by
     the user or the system administrator with root priviledges is 
     relatively foreign to most UNIX implementations.  There are
     really two sub issues involved here.

     a) We generally have two operators on duty in our machine room
        during peak hours.  Either of these operators must perform
        tasks such as answering requests, killing runaway logins and
        the like.  Requiring each of these operators to log in under a
        separate userid leads to an unacceptable amount of wasted
        time.  On the other hand, a single operator userid is a
        definite security problem.  We are currently attempting to
        establish an operator userid that can only be logged in on the
        system console in our machine room.

     b) We would like to delegate many tasks such as tape control,
        backup, printer control and such to our operators.  At the
        same time we don't want to share the root password.  There are
        a few systems out there to allow the delegation of tasks to
        certain users.  All of these, of course, have security issues
        involved that must be considered.

(2)  Tape device management.  Another capability supported in
     mainframe operating systems is the ability to gain exclusive
     control of a tape device, request that a tape be mounted, and
     release the device when the user is finished with it.  We would
     like to have this capability in our UNIX environment as well.

(3)  Load balancing.  In a single box balancing the load among several
     CPUs is relatively straitforward (at least in concept).  When
     your CPUs are spread across a dozen or more machines how do you
     avoid the situation of one machine being sunk to its knees while
     another is nearly idle.  When you add multiple classes of
     processor (is a 4/490 at 50% more loaded than a sparstation at
     30%?) or multiple types  (how do the above two compare to a
     decstation 3100 at 40%?) this issue can become a nightmare.

(4)  Userid management.  Most UNIX boxes come with instructions about
     which several files should be edited to add a user to the system.
     We are developing programs to manage the addition of userids in a
     relatively bullet proof way so that non-technical personnel can
     add new users.  While there are programs to do that around very
     few address the large system issues such as password file locking
     and batch additions of large groups of users like a class roll.

(5)  Accounting.  We have many projects of one sort and another which
     require accounting of resources.  On our mainframe we have an
     account number which can be used for this purpose.  The same
     userid can be under many accounts.  The UNIX accounting system
     (at least the one on a Sun running SunOS 4.1) doesn't seem to
     have an equivalent concept.  As far as we can determine no
     accounting information by group is available so that the newgrp
     command gives us no help.  It looks as if we will have to have
     multiple userids per user in this case.  The thought of that is
     repulsive both from a personal and administrative viewpoint.

I'm sure there are many other issues out there waiting for us that we
haven't thought of yet.  Any discussion or suggestions on the above
would be most welcome.

Regards,
FWP
--
--
Frank Peters   Internet:  fwp1 at CC.MsState.Edu         Bitnet:  FWP1 at MsState
               Phone:     (601)325-2942               FAX:     (601)325-8921

More information about the Comp.unix.large mailing list