TD_MFutureIssues

!! Re-address this stuff at a later date

* empty OUs are not purged in openLDAP sync script
* idmap.d nfs4 svr settings
* misc monitoring of peripherals (ac done)
** power strip
** others
** improve print monitoring
* ssh/ssl services
** ldap
** svn
** apache
** pam
** other?
* password cycling
* https on non-ssl serviers
* depreciate mon
* look at log file retention (/matrix/log)
* svn for keys, etc
* dup pkgs in different templates?
* cron MAILTO=""
* www.africamedia.org, www.comicsforum.org, rename without www and correct links in cf.web_srv
* set mailname in /etc/mailname
* openldap group inheritance overlay/options
* www.dns entries (add www for all dns we host)
* ssh timeout value for sessions
* script: homedir perm/ownership check/fix
* module: improve mysqlconf
* script: user sanity checking (empty pass, bad homedir, etc)
* proxy monitoring (monitor access to inside from outside)
* move all modules to scripts dir
* web server load balancing
* update logrotate for Rmrsh
* scripts for /etc/files
* crontab h-net restart
* rsync backup (rsnapshot)
* syslog server
* verify, re-address anonuid/gid nfs4 export options
* xen monitor disk size?
* fix profiles path to read 'nocache' for other, older profiles?
* more logging improvements
#) log over ssh (possibly only when [[/matrix]] isn't mounted)
#) scan logs and e-mail errors from cfrun weekly
#) check for e-mail errors!
* weekly report script to:
#) check logs
#) check disk usage, etc
#) check alerts
#) more?
* vpn config verify in cfengine
* Lisa lost e-mail from 6/18/2008 - 2/4/2010 =(
* apache2 failover/ha setup final implementation notes
** webserver: apache2.conf
** webserver: centralized logging for awstats
** proxy: ip addr in /etc/haproxy.cfg
** /etc/sysctl.conf net.ipv4.ip_nonlocal_bind=1?
** host names/ips in /etc/heartbeat/ha.cf
** auto_failback not working? remove wdp/meast settings?
** add heartbeat to monitored services
* improve monitoring to restart services when high system load observed?
* more things for nagios?
** firewall
** mail
** mon/nagios?
** vpn
** web proxy
** https
** fai
** tftp
** lvm
** backup
** dlv.matrix.msu.edu?
** windows?
* revisit for nagios
** send_nsca.cfg
** nsca.cfg
* system restructuring ideas
*** system build/config scripts should be about set really
** rebuild firewall into system (bowser.matrix.msu.edu)
*** system build/config scripts may need openvpn adjustments, the firewall itself should be good
*** is it ready for sid? currently running in lenny or testing
** web server clustering/failover setup
** database backup or ha (ha not likely due to mysql limitations)