How to Set Alternative Archivelog Destination

Similar Messages

• After Effects CS4 | How to set multiple out destinations at once

  I know that if you have multiple items in the render queue you can control-click on the Output Module and set all of the selected items to the same Output Module.  I am wondering if there is a way to set the render destination (Output To) of multiple compositions at once as well.  It's not uncommon for me to have well over 20 compositions that all need to render to the same folder.  It becomes a pain when I need to click on each and tell them where to go individually.
  Any insights are appreciated.
  -Adam

  Exactly as Todd said.
  Mylenium

• How to set alternative items ?

  Hi all ,
  i create the sales order document. If the Order Qty > Available QTY it will show item availability check. I want to set Display alternative items. But how can i set the alternative items first in SAP ?
  Thanks in advance
  Regards
  KK

  Hi Gordon,
  Do you know which template to use to import Alternative Items?
  Kind regards,
  Greeshma

• How to set the  Upload Destination Directory for RichFileUpload ?

  Hi! I'm using the RichFile Upload component for uploading the files to server..
  I have configured the file the size to be uploaded, but could not set the destination directory... The web.xml entries I have in my project is:
  <context-param>
  <!-- Maximum memory per request (in bytes) -->
  <param-name>org.apache.myfaces.trinidad.UPLOAD_MAX_MEMORY</param-name>
  <!-- Use 500K -->
  <param-value>512000</param-value>
  </context-param>
  <context-param>
  <!-- Maximum disk space per request (in bytes) -->
  <param-name>org.apache.myfaces.trinidad.UPLOAD_MAX_DISK_SPACE</param-name>
  <!-- Use 5,000K -->
  <param-value>5120000000</param-value>
  </context-param>
  <context-param>
  <!-- directory to store temporary files -->
  <param-name>org.apache.myfaces.trinidad.UPLOAD_TEMP_DIR</param-name>
  <!-- Use an ADFUploads subdirectory of /tmp -->
  <param-value>/tmp/TrinidadUploads/</param-value>
  </context-param>
  <filter>
  <filter-name>trinidad</filter-name>
  <filter-class>org.apache.myfaces.trinidad.webapp.TrinidadFilter</filter-class>
  </filter>
  <filter-mapping>
  <filter-name>trinidad</filter-name>
  <servlet-name>Faces Servlet</servlet-name>
  <dispatcher>FORWARD</dispatcher>
  <dispatcher>REQUEST</dispatcher>
  </filter-mapping>
  By default the uploaded files are stored in :
  /u01/home/developer/.jdeveloper/system11.1.1.0.17.45.24/o.j2ee/embedded-oc4j/config
  I'm using Linux OS and JDev11g .
  Why is the desination directory configured in web.xml not being used?
  Am I doing any thing wrong?
  Any suggestions ?
  Thanking you,
  Samba

  Hi! Ric,
  This is the entire web.xml :
  <?xml version = '1.0' encoding = 'UTF-8'?>
  <web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" version="2.5" xmlns="http://java.sun.com/xml/ns/javaee">
  <description>Empty web.xml file for Web Application</description>
  <context-param>
  <param-name>javax.faces.STATE_SAVING_METHOD</param-name>
  <param-value>client</param-value>
  </context-param>
  <context-param>
  <!-- Maximum memory per request (in bytes) -->
  <param-name>org.apache.myfaces.trinidad.UPLOAD_MAX_MEMORY</param-name>
  <!-- Use 500K -->
  <param-value>512000</param-value>
  </context-param>
  <context-param>
  <!-- Maximum disk space per request (in bytes) -->
  <param-name>org.apache.myfaces.trinidad.UPLOAD_MAX_DISK_SPACE</param-name>
  <!-- Use 5,000K -->
  <param-value>5120000000</param-value>
  </context-param>
  <context-param>
  <!-- directory to store temporary files -->
  <param-name>org.apache.myfaces.trinidad.UPLOAD_TEMP_DIR</param-name>
  <!-- Use an ADFUploads subdirectory of /tmp -->
  <param-value>/tmp/TrinidadUploads/</param-value>
  </context-param>
  <filter>
  <filter-name>trinidad</filter-name>
  <filter-class>org.apache.myfaces.trinidad.webapp.TrinidadFilter</filter-class>
  </filter>
  <filter-mapping>
  <filter-name>trinidad</filter-name>
  <servlet-name>Faces Servlet</servlet-name>
  <dispatcher>FORWARD</dispatcher>
  <dispatcher>REQUEST</dispatcher>
  </filter-mapping>
  <servlet>
  <servlet-name>Faces Servlet</servlet-name>
  <servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
  <load-on-startup>1</load-on-startup>
  </servlet>
  <servlet>
  <servlet-name>resources</servlet-name>
  <servlet-class>org.apache.myfaces.trinidad.webapp.ResourceServlet</servlet-class>
  </servlet>
  <servlet-mapping>
  <servlet-name>Faces Servlet</servlet-name>
  <url-pattern>/faces/*</url-pattern>
  </servlet-mapping>
  <servlet-mapping>
  <servlet-name>resources</servlet-name>
  <url-pattern>/adf/*</url-pattern>
  </servlet-mapping>
  <servlet-mapping>
  <servlet-name>resources</servlet-name>
  <url-pattern>/afr/*</url-pattern>
  </servlet-mapping>
  <session-config>
  <session-timeout>35</session-timeout>
  </session-config>
  <mime-mapping>
  <extension>html</extension>
  <mime-type>text/html</mime-type>
  </mime-mapping>
  <mime-mapping>
  <extension>txt</extension>
  <mime-type>text/plain</mime-type>
  </mime-mapping>
  <ejb-local-ref>
  <ejb-ref-name>ejb/local/SessionEJBLocal</ejb-ref-name>
  <ejb-ref-type>Session</ejb-ref-type>
  <local>com.prapansol.demos.SessionEJBLocal</local>
  <ejb-link>SessionEJB</ejb-link>
  </ejb-local-ref>
  </web-app>
  And about the other details you asked :
  1. I'm not using any custom UploadFileProcessors.. I'm using the default one.
  2. I tried with and with out the TrinidadUploads directory
  But still the same effect!
  Can you suggest where I'm going wrong?
  Thankyou
  Samba

• Different archivelog destination on physical standby database

  Hi,
  Can I set different archivelog destination for physical standby database in duplicate command? (Due to space problem ) How can I do it?
  For ex. on primary site archivelogs reside in /u01/ORCL/archivelog, and I want on phy. standby side archive dest. under /u08/ORCL/archivelog.

  Even you can give LOG_ARCHIVE_DEST_1 in standby init file, So whenever you start standby/auxiliary instance automatically the dest_1 will refer to /u08/orcl(whereever you want).  So you can have archive destination any where but should have proper permissions and location should be available.
  If you want to assign one by one destinations, then still you can use "ALTERNATE" clause so that when the primary location unavailable or unable to archive, then of course it writes into alternate location you have specified from pfile.
  You can check this
  http://docs.oracle.com/cd/B28359_01/server.111/b28294/log_arch_dest_param.htm#i91817

• Datafile - archivelog destination?

  I have two logical disks,
  D – RAID 5
  Oracle_home, two of tree redolog groups, two of tree control files, TEMP, UNDO, SYSAUX datafiles.
  E – RAID 1
  My tablespace datafiles – production datafiles
  Only these drives have free space for creating new datafile (My tablespace datafile) and for second Archivelog destination. Where to create datafile and where to set second archivelog destination? In any of these disks is no space for datafile and for archivelog files.
  Thanks!

  Nikoline wrote:
  Thanks for the reply.
  This bad condition was made by someone else and now I cannot buy more RAID-1 disks.But you CAN buy more RAID-5????
  Disk is cheap. And a given physical drive unit is not priced on the type of raid config you intend to plug it in to.
  Disk is cheap. Especially when measured against the cost of not being able to meet your company's requirements.
  The fact that you seem to be running out of disk on either config is a more fundamental problem that what type of RAID is best for what type of files.
  Set aside the RAID-5 vs. RAID-1 consideration for a moment. Do you have enough disk space of ANY type to meet your needs? If not you need to either
  1) buy more disk
  or
  2) redefine your needs.
  Don't tell me you can't do either one. Well, OK, if you can't do either one, there is a third option: FAIL TO MEET THE REQUIREMENTS.. It's up to you and your management to decide the cost effectiveness of each of those three options, but those ARE the only three options. I don't care how cleverly you arrange your files, there is no configuration that will allow you to store 20gb of data if you only have 10gb of disk space.
  Now, turning back to the RAID question for a moment, I have a couple of other observations . . .
  The fact that a supposedly bad configuration decision was made by someone else does NOT mean you a forever trapped in that bad configuration. (This applies to a lot more than the assignment of a particular file to a particular RAID config). What is keeping you from moving a file?
  Second, some people have a knee-jerk reaction to placing certain files (especially redo) on RAID-5. This stems from the fact that ALL ELSE BEING EQUAL, raid-5 will be slower on write operations that will raid-1. But it is quite possible that in a not-so-heavily laden system, or on a very fast SAN with its own cache, the write penalty of raid-5 does not produce a meaningful performance impact. If your end-user average transaction time is already sub-second with your files on raid-5, how much gain do you expect by moving those files to raid-0. Ok, so you don't have the expertise to make an estimation. Honestly, neither do I. Let me ask the question a little differently. If your average transaction time measured at the user keyboard is 0.75 seconds, what is the payoff for reducing that by a factor of 2? By a factor of 10?

• How do I set up jms destination  of OSB Alert?

  According to the document description,a JMS destination URI in the format: jms://host:port/factoryJndiName/destJndiName. My jms is on a cluster, So, I Set this URI: jms://10.1.1.100:8001,10.1.1.101:8001,10.1.100:8002,10.1.1.101:8002/factoryJndiName/destJndiName.
  When the machine (10.1.1.100) was shutdown, the alert will error and says "can not find JMS destination".
  How do I set up jms destination? tks!
  Edited by: user12382989 on 2009-12-23 下午5:03

  Did you consider using JMS distributed destination for your use-case?
  http://download-llnw.oracle.com/docs/cd/E13222_01/wls/docs103/jms/dds.html
  Manoj

• PDF/X-3:2 (PDF 1.3): Destination differs from Output Intent; how to set Destination -

  Hello.
  In InDesign CS5 (7.0), I set up a document containing greyscale images (profile: Dot Gain 15%) and cmyk-images (profile: Euroscale Coated v2). The latter is also the working space, and it is also the Output Intent Profile Name set in the Export Adobe PDF Dialog under Output – PDF/X. The Colour Settings in the .indd set the Colour Management Policies to Preserve Embedded Profiles (and Colour Conversion is set to No).
  Now, when exporting this .indd to a .pdf (PDF/X-3:2 (PDF 1.3)), the Summary tells me that the Destination is ISO Uncoated Yellowish, and Acrobat (View – Navigation Panels – Standards) feels:
  Conformance:
  Standard: PDF/X-3:2002
  ISO Name: ISO 15930-3
  Status: verification succeeded
  Trapped:False
  OutputIntent
  Identifier: ISO Uncoated Yellowish
  Info: ISO Uncoated Yellowish
  —so what was Destination in the export settings now appears as Output Intent, meaning:  the Destination overrides the OutputIntent as set in the export settings.
  I have no idea where this ISO Uncoated Yellowish comes from. As far as I can see, nothing, neither in the placed content, nor in the document, has this profile set.
  In a second document, with the exact same settings as specified above and the only difference that it contains only greyscale images. In this case, Acrobat sees the Identifier as FOGRA1 (which is indeed the (greyed out, unchangeable) setting in the export Dialog's Output – PDF/X – Output Condition Identifiert—but that is the case in the first document, too), and the Info as Euroscale Coated v2. This seems correct, but why might "ISO Uncoated Yellowish" appear in the first case, and how would I get rid of it and set  the correct Destination?
  Thanks a lot.

  No, it isn't a colour space, but there's still grey profiles, specifying e.g. the dot gain.
  Links panel does list the gray profiles, but they're not used in anyway.
  If you assign different gray profiles in Photoshop the gray profile makes the conversion back to monitor RGB for preview. So here's the same image with 10% and 30% dot gain in Photoshop and the previews are very different even though the output values are the same:
  If I place the two images in ID and turn on overprint the previews are identical (the output values are also identical)—via the document CMYK profile, which is EuroScale here. The preview would be the same if you pasted the grayscale into the black channel of a CMYK document:
  If I export the ID doc as PDF/X-4 which includes all profiles, the grayscales show as DeviceGray (no profile):

• How we set up multiple websites on OSX Server

  BACKGROUND
  After fiddling and futzing around for weeks (actually since last year) I've finally figured out how to set up multiple websites (virtual sites) using one port and one IP address. While there seems to be lots of discussion on this topic, it seems that the basic assumption is that one knows everything about websites, DNS and all that stuff, which I do not.
  When our network was originally established the engineer set up a wiki and also configured webmail, so we had two sites, one secured for mail and the other open for Calendar and the wiki. We were not hosting any websites locally because our school website is hosted by a company in New England.
  This year I wanted to set up websites for teachers and students. As great as the wiki is, there are some things it just can't do as well as a website. So I figured if I set up the sites teachers could link back and forth from one to the other. In addition kids could now start to use a real website instead of the cobbled together file mess I had when we ran a Windows network. Also iWeb is a much more accessible tool than FrontPage.
  SERVER SIDE:
  Snow Leopard Server - 10.6.4
  There are two - actually three pieces if you want your iWeb clients to connect to the server: Server Side Web Services, DNS and, in my case, FTP.
  ================================================ SERVER SIDE - WEB SERVICES
  If you haven't turned on Web services, you'll need to open Server Admin and do that. If you don't know how to set up web services - just reply and I'll step you through that as well.
  Once web services are set up and turned on, you'll see it listed under your server’s name in the Server Admin sidebar. Click on "Web" and then click on the "Sites" tab at the top of page. This is where you list all your sites.
  Click the plus button and enter the fully qualified name of your site, for example: "students.myschool.org". Don't use the defaults here (no name) - that's what got me in trouble before. BE SPECIFIC!
  You'll be looking at the "General" tab (the other tabs, "Options", "Realms", etc. we'll deal with in a second).
  On the "General Tab", the default IP address ("any") and port (80) is just fine. We'll run everything over port 80. (Apache figures all the virtual site stuff out - you don't need your rocket science degree for that.)
  "Web Folder:" is important because this is how you'll "segment" your websites. While I would NEVER do this again, we have a solid state hard drive for the OS and a RAID array for our data files. IF you have that, make sure you do NOT use the default "Web Folder" because it will store all your files on your solid state drive. There may not be enough room, over time, on that drive. I've not experienced it yet, but it's my understanding that if the drive fills up, the server shuts down.
  I store my web sites on a folder on the RAID array.
  Everything else on that tab can be left as the default. (Just make sure that you have an "index.html" or "index.php" file in your web folder root, but iWeb will take care of that for you.)
  I would put in your email address in the "Administrator Email:" field.
  Under "Options" you really don't have to put anything. I've tested making websites with iWeb and it doesn't appear that anything needs to be checked.
  Nothing needs to be entered in "Realms" as well from what I see working w/ iWeb.
  The defaults in "Logging" are fine.
  You can leave "Security" alone, but we do have a (self-issued) certificate listed for our webmail site.
  "Aliases" is important. Under "Web Server Aliases" you enter how you want the site to respond to when users type in a URL in their web browsers.
  When our web server was initially set up the engineer set up "wiki.myschool.org" on port 80 and "mail.myschool.org" on port 443. In the aliases section was nothing but a "*" (the wildcard character). That means, from what I can figure out, that the webserver will respond to these sites regardless of what is typed in the URL. (Well, something like that - point is, if you create OTHER websites, you'll NEVER get to them because the wildcard character in the "Aliases" section, in effect, grabs those web requests and redirects them to the sites that are already there.
  In my case I deleted both of those wild card characters. For my "wiki.myschool.org" site, I entered "mail.myschool.org". That means if you type EITHER "wiki." or "mail.", go to the site that’s stored in the “Web Folder” we set up when those sites were created.
  For "mail.myschool.org" I just DELETED the wildcard character. I wanted that site (since it was secured) only to respond to "mail." - nothing else. (You're not going to that secured site for any other reason than to get your mail.)
  "Proxy" can be left blank. Have no idea what that does. As time permits I'll do some research and figure out what it's used for.
  "Web Services" is if you want to provide any MORE services to this particular site. Most likely you'll want to uncheck all the boxes. For our "wiki." site, we have checked "Wikis", "Blogs", and "Calendar". For our "mail." site we have those checked PLUS "Mail".
  I would create a separate "Web Folder" for each of your sites. I don't know if that's a requirement but for housekeeping purposes, I would keep the sites separated. And I SUSPECT that it's "best practice" to separate your wiki from your other websites.
  SERVER SIDE - DNS
  OK...now you have to make your site reachable and the only way to do that is to set up DNS so that folks don't need to type in the IP address of your web server. You need to set up DNS inside your network and, if you want folks in the outside world to reach your website, you'll need to set up an external DNS as well. I'm going to cover INTERNAL DNS - if you don't know how to set up EXTERNAL DNS - reply or email me and I'll post those instructions.
  Most likely you have already created Zones for you network...all you really need to do is create "Aliases" so that when you type "students.myschool.org" your web browser will know that site resides on IP address XXX.XXX.XXX.XXX.
  If you've set up Zones then you already have a "Machine" setting that translates your server’s name to an IP address and vice versa.
  All you need to do is create an "Alias" (CNAME) record for, in this case, "students". You’ll see the choices for types of records when you click the "Add Record" button.
  There are only two fields to configure for a record: "Alias Name" - in this case "students" and "Destination" - in this case "servername.myschool.org". (You've already entered a machine record that says "servername" = 192.168.1.x.)
  That's it for Internal DNS.
  SERVER SIDE - FTP
  Now you have to get iWeb to communicate with the webserver.
  There are only three ways iWeb will communicate with webservers: MobileMe, Local Folder and FTP Server.
  Local Folder is really only practical if you want to host a website on a laptop (I was blown away initially when I found out that all Macs had a built-in web server - how neat is that?). I think there are some very cool things teachers could do with configuration, and, of course, you wouldn't need to set up any web services on the web server, but that's for another discussion. You need to set up FTP services on the web server.
  Turn on and enable FTP on your webserver.
  You can leave the defaults for "General", "Messages" and "Logging". "Advanced" is the only thing you want to set. I set "Authenticated Users See:" to "Home Folder Only". I set the "FTP Root" to the same root folder in which I plan to store my web sites (/VOLUMES/RAID Array/WebServer/Documents). This setting sets that folder only to be accessible via FTP.
  I would suggest returning to your DNS settings and adding one more "Alias". Set "ftp." to point to your webserver. Why? So folks can edit their sites from home (see below).
  CAVEAT: If you are running FTP on other servers, make sure that the settings here do not conflict with the settings on the other servers. For example, I'm running FTP on my file server so that my scanners can communicate with it. However, I configure my FTP settings by machine name and NOT "ftp.myschool.org".
  ================================================
  CLIENT SIDE - CONFIGURING iWEB
  Now you have to configure iWeb so that it will communicate with your server.
  Click on the "Site" icon so that "Site Publishing Settings" appears.
  Publishing:
  "Publish to:" = "FTP Server"
  You can set the "Site name:" and "Contact email:" to whatever you want. But see below!
  FTP Server Settings:
  "Server address"=ftp.myschool.org (you could also enter in servername.myschool.org or the IP address. However, if you want folks to be able to work on the site from home, you will need to configure external DNS for that. If you use the IP address, you're out of luck for remote access to the site. (You can do it but it's beyond the scope of this discussion.)
  "Username" & "Password" should be your user's network login credentials.
  "Directory/Path" - this is important. Remember, you set your "FTP Root" to be "/VOLUMES/RAID Array/WebServer/Documents". If you leave this field blank then the website will be dumped into this folder. If you are only setting up one site, that may be OK. However I wanted to set up a "students" site folder, a "faculty" site folder and a separate site for our literary magazine.
  THEREFORE: I have, in my ..../Documents folder (on the server), a "students" folder, a "faculty" folder, and a "litmag" folder.
  SO...in my "Directory/Path:" field, I have "/faculty". That means the full path to this website is "ftp root/faculty" or "/VOLUMES/RAID Array/WebServer/Documents/faculty" (You don't need a trailing "/" character. iWeb will automatically append the folder for you user depending on what you entered in "Site Name:" in the "Publishing" area.
  Website URL:
  This is the root website depending on whether it is "students" or "faculty". Since iWeb will append the site name to this root website, I accomplished what I hoped to accomplish in this post (http://discussions.apple.com/message.jspa?messageID=12288561#12288561).
  Faculty sites will be @ http://faculty.myschool.org/username. Students @ http://students.myschool.org/username. PERFECT!
  iWeb is such a GREAT tool - NOW the kids can start using it!
  I want to reiterate that this works for our school but it should work for you as well. There may be better ways to do this but it works for us.
  Hope this has been helpful and you won't have to spend weeks trying to figure this all out by yourself!

  OK...here's how we did it.
  To get access to the website you created from outside your network there are a couple of steps.
  First, you have to have a STATIC IP address from your ISP. If you have a T1 circuit, no problem...you usually get a couple of static IPs you can use. However, if you have a cable modem circuit, most likely you have a dynamic IP address which changes when you connect to the internet. Usually a static IP will cost a bit more because the ISP has to go through a couple of steps to set it up for you. But once you have the address, you now have a way for folks outside your network to connect with you.
  (I’m also assuming that you use a router of some sort through which traffic flows out to the internet and that you aren’t using connection sharing or something like that.)
  The next thing you need to do is have your new static IP address associated with the server on which you are hosting your website. You've probably already done that if your website works inside your network. However, you've associated a private ip (192.168.x.x, etc.) to your web server. That doesn't mean anything to folks on the outside because private IP addresses are just that - private - folks can't access them. (I won't get into VPN because that's a whole other topic.)
  The way you associate your new static IP address to your web server is through some sort of dns application from your ISP. For example, we use TierraNet to manage our external DNS information. They have a web interface control panel that is very similar to the DNS interface for XServer. You can create CNAME records (aliases - other ways that folks can access your servers).
  Basically you create an "A" (CNAME) record with a fully qualified domain name (e.g. webserver.myschool.org) and point it to your public IP address (XXX.XXX.XXX.XXX) which you just got from your ISP. It's going to take a while (24-48 hours) for this change to take effect. BTW, you can create as many “A” records as you want. For example mail.myschool.com and wiki.myschool.com could point to the same place.
  You want to make sure that the fully qualified domain name you enter in the external dns utility matches the name you used when you created your internal dns records on your XServer.
  OK...so now folks can get to your domain - but, remember, you have a private network IP scheme between them and you. You now have to tell your router that when web traffic arrives, allow it inside the network and direct it to your web server.
  Let's say your public IP address is 205.100.112.50 and your web server is 192.168.0.5.
  You have to create, in your router’s "Security Zone" (router companies call them different things) a couple of rules. Usually the first rule is: "Let everything inside the network get out to the web." You've probably already done that if folks inside the network can reach the internet.
  You then have to tell the router to allow web traffic (port 80) into your network AND redirect that traffic to 192.168.0.5.
  We use AdTran routers and they have a web interface which allows you to write "rules" affecting public and private traffic. Public is folks outside the network, private is folks inside.
  AdTran calls them "Security Zones" and you modify those zones with policies.
  So my "Policy" would say, in the above example, redirect traffic from my public IP (205.100.112.50) -> to my web server -> (192.168.0.5).
  THEN you have to modify this policy with what AdTran calls "Traffic Selectors". You've said, OK, you can get in, but WHAT can get in?
  The "Traffic Selector" is written to say: "Permit" "TCP" traffic from 205.100.112.50 only through Port 80. (That's the port that web traffic goes over. If you wanted a secure website, you'd add another traffic selector that opens port 443, for example.)
  I'll tell you I'm no genius when it comes to this. I called AdTran and had them configure my router for me. I told them what I wanted done, they remoted into the router and configured it. But then I could go to the web interface and see what they did and then added rules later on when I wanted, for example, to get access to the network via Apple Remote Desktop or VPN into the network on my iPad.
  I'd bet that your router has a maintenance agreement that includes this service and if it doesn't it should have.
  I did find that I still had issues when I tried to set this up originally and it had to do with the ORDER of the policies. I can’t remember exactly what the issue was, but, effectively one of the policies highjacked traffic before the policy that I wanted got triggered. Simply moving them around in the list fixed that issue. So if you have this set up but still can’t access the site, check the order of your rules.
  I don’t know if that helps or not, but I try to think about this stuff conceptually and then get someone to help me with the details. I work with this stuff so infrequently that I forgot how I did something 6 months or a year ago. I’m in the process of creating a wiki for the school which documents all this stuff, but that’s a major undertaking.
  Cheers,
  John

• Once and for all: How to set up and use SSH

  Yes, I know ssh has been discussed on and off, but never in its entirety; and yes, there are step by step instructions on the www, but at one point or another they skip a crucial instruction that would be necessary for unix-dummies (e.g. how to save and close the nano-editor in Terminal). So, please pardon my question:
  There are several points I'd like to ask for ssh-connecting two macs on a local network:
  1) In terminal-file-"connect to server" you can ask for an ssh connection to be set up. For this to work, do I need to create private and public keys first? If so, how? Please point me to a reliable and step-by-step instruction site.
  There are some free ssh-utilities out there, but their documentation is just not helpful enough for a UNIX-dummy.
  2) Apparently I managed to connect via ssh once (from the terminal, see point 1) to a local server (allowing remote connection set to ON at the server). But then, when I connected to that server from the client's finder and tried to get into my user account on that server it told me that no secure connection could be established. What's wrong here? Do I have to continue working from within the terminal to use this connection? That would be difficult for an average MacUser.
  3) What is the security advantage of an SSH connection on a local wireless network (Airport Base Station) over WPA2, if at all?
  4) And how to set up an ssh-connection over the internet cloud to safely build a remote control/desktop sharing connection, e.g., a friend's Mac when she has a problem?
  Thanks for your consideration.

  First I'm not sure what your goals are.
  1) In terminal-file-"connect to server" you can ask for an ssh connection to be set up. For this to work, do I need to create private and public keys first?
  If you have ssh keys, you can do this without passwords. If you have not exchanged keys with the remote system, you will be asked for the password of the user you are attempting to login as.
  If so, how? Please point me to a reliable and step-by-step instruction site. There are some free ssh-utilities out there, but their documentation is just not helpful enough for a UNIX-dummy.
  Log into the remote system. This could be via ssh.
  On the remote system, run the following command to generate an ssh key for that remote system:
  ssh-keygen -t rsa
  Generating public/private rsa key pair.
  Enter file in which to save the key (/Users/username/.ssh/id_rsa): <<take default>>
  Created directory '/Users/username/.ssh'.
  Enter passphrase (empty for no passphrase): <<enter nothing>>
  Enter same passphrase again: <<enter nothing again>>
  Your identification has been saved in /Users/username/.ssh/id_rsa.
  Your public key has been saved in /Users/username/.ssh/id_rsa.pub.
  The key fingerprint is:
  aa:bb:cc:dd:ee:ff:gg:hh:ii:jj:kk:ll:mm:nn:oo:pp [email protected]
  This will generate an ssh key for the remote system. This could be any system that support ssh, such as a Unix system, or another Mac.
  Copy the id_rsa.pub file from the remote system to your Mac. When I say "your Mac" I mean the one that you want to make the ssh connection from. The id_rsa.pub is found in the remote system's ~username/.ssh/ directory.
  Append the copied id_rsa.pub to your Mac's ~himbear/.ssh/authorized_keys2 file
  cat id_rsa.pub >>~himbear/.ssh/authorized_keys2
  Now when you ssh to that specific remote system, it will NOT ask for a password. The first time you ssh to any system, ssh will ask if the system is really the system you thing it is. But once you say "yes", it will not ask that question again.
  Repeat for every remote system you wish to log into using an ssh key.
  2) Apparently I managed to connect via ssh once (from the terminal, see point 1) to a local server (allowing remote connection set to ON at the server). But then, when I connected to that server from the client's finder and tried to get into my user account on that server it told me that no secure connection could be established. What's wrong here? Do I have to continue working from within the terminal to use this connection? That would be difficult for an average MacUser.
  MacUser. A flash from the past, as in the MacUser magazine.
  ssh is not used by default when you make connections. If you want an ssh connection, you have to establish it intentionally.
  ssh can be used to pre-establish a tunnel (or tunnels) that other services can use. Once an ssh tunnel is establish, connections to local host's tunnel port will be connected to the specified remote port. For example:
  ssh -L 5901:localhost:5900 [email protected]
  will establish a tunnel that VNC can use. The VNC client would connect to localhost display 1 or port 5901.
  ssh allows multiple -L tunnels to be specified on the ssh command line.
  3) What is the security advantage of an SSH connection on a local wireless network (Airport Base Station) over WPA2, if at all?
  Inside you home. Not much. Unless of course you do not trust the other members of your family. That is to say, others having your WPA2 password, and are thus on the inside, and can sniff you packets.
  4) And how to set up an ssh-connection over the internet cloud to safely build a remote control/desktop sharing connection, e.g., a friend's Mac when she has a problem?
  If you are using the Mac OS X Leopard built-in *Screen Sharing* and you are connecting to another Mac's built-in Leopard System Preferences -> Sharing -> Remote Management (Tiger's Apple Remote Desktop), then in the *Screen Sharing* preferences, is an "Encrypt all network data" option.
  If you wish to set this option in advance, you can launch *Screen Sharing* by double clicking on System -> Library -> CoreServices -> Screen Sharing.app
  You can *Screen Sharing* connections over the net using iChat. This is one of the easiest ways to take control of their system. Of course they need to cooperate. I use a Free AOL Instant Messager (AIM) account for my iChat connections. And as a side benefit you can text, audio chat and/or video chat with the person at the other end.
  If you are NOT using the build-in Mac OS X *Screen Sharing* and/or you are NOT using the build-in remote Mac OS X remote management server, then this is a situation where an ssh tunnel would be a very good idea.
  However, setting up an ssh tunnel between 2 systems across the internet gets complex.
  In this case you might want to consider using something like LogMeIn.com which will deal with all those nasty home routers without needing to to do nasty router configurations, and it will be a secure connection. LogMeIn.com will not be as fast as a *Screen Sharing* connection or a VNC connection, but it will be secure and easy to establish. Again, this is only if you can not to Mac to Mac *Screen Sharing* using built-in Mac OS X remote desktop.
  Now if you want to roll your own ssh tunnels for VNC, then I'm just going to outline the things you need to do.
  If the remote system is behind a home router, you need to configure that remote home router to "Port Forward" port 22 on the Internet side to port 22 on the target Mac. Bonus points if the internet side using a high number port to discourge net bots from knocking on your door. Use the ssh -p 12345 option to connect to the high numbered port that is forwarded to port 22 of the destination Mac.
  On the remote Mac you need to run a VNC server. If this is a Mac, then Leopard System Preferences -> Sharing -> Remote Management (Tiger's Apple Remote Desktop). If it is not a Mac, then for Windows, TightVNC, UltraVNC, RealVNC are possible options. Linux has a built-in vncserver, or you can install x11vnc which has the advantage of displaying the desktop screen.
  Once you can access the remote system, you use an ssh command like the following:
  ssh -p 12345 -L 5901:localhost:5900 remote.system.address
  You can get the remote system's address by having the remote system surf over to http://whatismyip.com. Then they can tell you the IP address.
  If you are going to be doing this a lot, you can get a free no-ip.com or dyndns.org dynamic DNS name for the remote system, and the remote system can run a dynamic DNS client (available from no-ip.com or dyndns.org) which will keep the dynamic DNS name updated as the remote person's ISP change's their IP address.
  Finally, now that you have an ssh tunnel for VNC traffic, you have your VNC client connect to
  Address: localhost
  Port: 5901
  Depending on your VNC client you may need to specify Display 1 instead of Port 5901. Or if you do not get a Display or Port option you specify localhost:5901

• How to set up TimeCapsule (4th) to create own private (wired) network behind Airport Express (5th) that is set up to join existing wifi-network of fritz adsl modem/router?

  I work in an office building with free Wifi to connect to the Internet. I want to be able to use this internetconnection, but at the same time I want to shield of my own wired network.
  I've made the following configuration:
  - fritz adsl modem / router
  - Airport Extreme (5th gen) set up to join existing wireless network (green light, works)
  - Lan-cable from lan-port AE to wan-port TC (4th gen)
  - Lan-cable from TC to Mac
  - Lan-cable from TC to Printer
  When I set my TC (network-settings) in bridge-mode everything works fine, but my Mac and Printer get an IP-address from the fritz modem / router and are visible to others.
  I tried to set TC in NAT/DHCP-mode, but then I get the error message that I should set a static IP-adress for TC. When I set TC in DHCP-mode, it looses connection to the AE. I'm not sure what to do now. Does anyone know how to set up my TC and create my own private network and still be able to get on the internet?

  Hajenius wrote:
  Is there a better alternative? I'd rather not want to reset my TC every day.
  You are using free internet.. so there is a price to pay.. that is convenience and non-ideal network setup.
  The better alternative is to pay for your own connection. Then you are completely free of the possibility of others in the bullding seeing your connection. (as long as you secure the wireless).
  But I think you are probably over worrying about public wifi.. if it is setup right.. ask the building admins.. it should be setup so each user cannot see another users connection. This is typical for most wifi setup and simply means you can see internet connection but nobody else on the connection. ie other wireless users.
  Having a router with NAT makes it then more secure again and allows clients on your own network to interact with each other. But you can setup wireless to the free wifi for every client.. (depending on how many IP you are allowed).. and run a secondary network without internet access. This is easy for desktop etc where you have a wireless and a wired connection but less convenient for mobile devices.. unless you use a cloud connection and each client can link and share via that.
  Have I made the explanation worse??
  Think of it this way.. if you had 3 laptops.. all 3 could connect to the internet from the building wifi.. but they cannot talk to each other or share resources in local office. You can put resources out in the cloud, that can be shared.. but that adds traffic and most free services are not fast.
  Now you can also plug all three into Time Capsule by ethernet.. and share local resources. Files, printers backup etc. This network is not connected to the internet at all. Each laptop has internet via free wifi and local connection.
  For devices like iphones that have no ethernet or other method.. you could use local wireless and public wireless.. but in turns.. still the only advantage is less issues with double NAT.. if that causes problems.. then this is an alternative.

• How to Set Up SSO Between IBM WebSphere and SAP EP Using JAAS

  Hi
  I have read the article on SDN called "How to Set Up SSO Between IBM WebSphere and SAP EP Using JAAS", which is also the name of my posting.
  The reason why I post this is that I've tried to follow the links in the PDF to get the file WebsphereEpSsoLib.zip but I get an error 403, which tells me that the file is not there.
  Does anybody know where this file went or can somebody tell me an alternative place to get this file?
  Jacob

  Please open the associated whitepaper, and you can find the download link to the .ZIP file on page 4.
  https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.docs/library/ibm/how to set up single sign-on between an ibm websphere portal and the sap enterprise portal using jaas.pdf
  Hope that works!
  Elise

• How to set target to Play button on begining DVD

  Man you dont use this program for a few months and you gotta take a course on it all over again.
  Ive completely forgotten how to set the PLAY button to activate at the beginning of the DVD. As in I was burning several DVDs and I tested them on my computer, and they worked fine. But the whole time I was using my mouse to navigate (I only put in one button "PLAY"). When at one point I happened to use the DVD navigator I realized I hadnt set it for a stand alone. So while if you watched it on a computer and were using your mouse you could hit the play button. But on a stand alone you cant get to it with a remote.
  I remember it being a simply thing, but for the life of me I cant figure it out. HELP!

  So are you talking about moving between the buttons on a menu screen (i.e. navigation in the menu) or are you saying you can't get the button to activate any video? Or both?
  The first issue is sorted out with the 'Settings' drop down box and choosing 'assign buttons now' or 'auto assign buttons' (but this slows down the menu creation and gets really frustrating at times). You should then be able to get to the menu (which will have the first button highlighted and ready by default) and then use the handset to move from button to button.
  The second bit is setting the target for the button - where it goes to once you select and activate it. Open up your menu in DVDSP and click on the buttons in turn. Look in the property inspector for the 'target' and make sure that each button is going where you intend.
  Alternatively, use the connections tab - this is far faster, IMO, but is slightly more abstract in concept...
  If you have done these things and you still cannot get to the button using the remote control then there is something else wrong - it could be that you simply forgot to create a button but have the text there ready... without the button rectangle being drawn out over the text (or next to it) there will be no button and no way to activate anything.

• How to set up time capsule with BT Infinity

  how to set up time capsule with BT Infinity

  The easiest and sure way is to use bridge on the TC as the method of connection. The TC then becomes a device in your network and gets its IP from the main router that I presume BT supply.
  Method is,
  1. Plug the TC WAN port into the BT supplied modem by ethernet.
  2. Plug the computer you are using for the setup into the TC by ethernet.
  3. Run the airport utility .. go to internet tab on the top menu..
  In the bottom option, Connection Sharing choose off (bridged mode)
  4. Go to the wireless page and setup wireless connection as you like it.. using whichever band you want. And make sure security is set to the highest setting, wpa2 personal. Put in a decent wireless passkey.
  5. Press the update and fix whatever else the TC will show as needing fixing.. usually security stuff.
  6. You can then disconnect the ethernet and connect by wireless if you want. Any port on the TC will now be a LAN port, including WAN.
  This is assuming BT supply a wireless router with built in vdsl/other type of modem. If so you normally will not be able to bridge the modem, unless BT are using pppoe authentication which they haven't in the past.
  If you really need to use the TC as a router then you will need to work out an alternative method. You can double NAT by placing the TC in the DMZ of the BT router if that is an option. It is not without issues in general.

• How to set up the airport express with a linksys wireless-g broadband router

  I need to know if and how to set up an airport express to use to extend a home wi-fi network. I have AT&T service with a 2WIRE modem. I am using a Linksys wireless-G broadband router. I also have the new Macbook Air notebook. The airport express keeps giving me a blinking amber light even when the ethernet cable (from the modem) connected. Please let me know how to set up an extended wifi network using this system. Any help would be appreciated.

  If that is all that is done, the Express would not provide more wireless coverage.  Instead, it would duplicate the coverage provided by the Linksys and there would be two WiFi systems covering approximately the same area.  As per my above comment, one Express connects via Ethernet to the Linksys.  The second Express provides the extension.
  You must have misunderstood what I was saying.
  Linksys is providing a wireless network.
  The Express is connected to one of the LAN ports on the Linksys router using a long Ethernet cable (or Ethernet powerline adapters)
  The Express is located on the other side of the house, for example.
  The Express is configured to create a wireless network using the same wireless network name, security and password as the Linksys router
  The Express is configured in Bridge Mode
  This has worked quite well for me for years. Computers "switch" from one wireless access point to another smoothly and automatically while they move around the house.
  Although this is an "extended" network, it is technically known as a "roaming" network.
  This is what I was suggesting as a possible alternative without having to buy more hardware.