HKMacs

My previous update for Lion Server 10.7.3 was so disastrous I had to completely re-install from scratch as the Open Directory database was completely hosed. This time updating to 10.7.4 I adopted a very careful procedure:

1) Backup Open Directory database using the Archive function in Server Admin.

2) Repair Permissions on start-up disk

3) Restarted from the USB Lion Server Installer I made earlier Creating a bootable Mac OS X Lion Server USB Installer Disk which has DiskWarrior on it.

4) Ran DiskWarrior:

Incorrect values in Volume Information Block were repaired.

5) Installed Lion Server 10.7.4 while booted from USB Lion Server Installer

6) Repaired permissions again (lots of permissions were fixed)

7) Ran DiskWarrior again (clean)

Rebooted from Macintosh HD start-up disk and checked everything was running correctly (it was).

There’s been a lot of publicity given to the new Mac “virus” that’s infected millions of Macs. Personally I haven’t come across it, but if you are worried that you might be infected there is an Applescript that that can check your system:

Quick Applescript to check your Mac for the Flashback infection

To use it copy and paste into Applescript Editor (found in Applications/Utilities) or you can download the script here:

Flashback_checker.scpt_1.zip

Today I had a lot of problems with internet access, mainly due to PCCW’s appalling broadband service on this wretched little island so I decided to shut all my computers down together with the Airport Extreme and broadband router, then restart everything to hopefully get a new IP address. When I restarted the server I noticed at the login screen that network accounts were no longer available but nevertheless was able to login. I then checked the MacBook Pro and found that I wasn’t connected to a Network Account Server in Login Options and couldn’t see any network server. Then I checked on the server and found that Workgroup Manager couldn’t login to the LDAP server. Then checking Server Admin I found that Open Directory wasn’t running and would not start. Needless to say I had never backed up the OD in Server Admin. I repaired permissions, restarted and nothing had changed. Then I restarted from my Carbon Copy Cloner backup from yesterday and found everything was sweet. So from Server Admin I made a backup of the OD database and then restarted from my regular Server HD and restored this backup of OD which then worked fine. My Network Account Server was available again and I had no problems creating new users in Server and Workgroup Manager. I’m assuming that Open Directory is fixed. However as a precaution I repaired permissions again and this was the result:

Repairing permissions for “Macintosh HD”

Permissions differ on “private/etc/apache2/httpd.conf”; should be -r–r–r– ; they are -rw-r–r– .

Repaired “private/etc/apache2/httpd.conf”

ACL found but not expected on “Users”

Repaired “Users”

Permissions differ on “private/var/db/openldap/openldap-data”; should be drwxr-xr-x ; they are drwx—— .

Repaired “private/var/db/openldap/openldap-data”

Permissions repair complete

 

It seems that the restored backup of OD had some problems but were fixed. Thanks to the ability of Server Admin to make a decent backup of Open Directory.

My question is now how will I make a backup of Open Directory under Mountain Lion server as there is no Server Admin?

Working on hints I gleaned from this article, I’ve created my own Lion Server USB Installer. Here’s how:

For most people installing Lion Server is a case of downloading Server.app from the Apple Store and installing on top of an existing OS X Lion setup. This is unsatisfactory for a number of reasons primarily because you don’t get to use the Server set up application. If you have an existing Lion Server that you have set up this way it’s very useful to keep a Lion Server Installer USB drive handy in case you need for some reason to re-install. You cannot use Recovery Disk for this as Recovery Disk will only give you a plain vanilla Lion client install. So presuming you have Lion Server installed now put a copy of “Install Mac OS X Lion” into your Applications folder. Make sure you also have a copy of the latest Server.app there as well. At time of writing the latest download of “Install Mac OS X Lion” from the App Store is at version 1.0.16 and is 4.07 GB. The latest Server.app is at version 1.3.1. These together will install Lion Server 10.7.3. If you launch “Install Mac OS X Lion” using a blank USB or Mac partition as your target  you will see the following:

 

 

 

Clicking on Customize will give you the option to install Server Software:

 

Now when you start this installation the Server components will be downloaded to the target drive. This can take a very long time (in my case about 50 minutes), so to save myself time for future installations I shut down my computer before the reboot for the install process. If you do that you will see two folders on the target drive, one called Applications which contains the latest version of Server.app and another called  Mac OS X Install Data which contains 3 files – “indexes.product”, “MacOS_10_7_IncompatibleAppList.pkg” and “Server.Essentials.pkg”. Keep these two folders as they can be copied to future install media to save the downloading time. If these folders are on the install media the install of Sever components will only take 3 minutes.

Then at this stage you can resume the installation and when the new drive reboots you will get the Server Assistant which will guide you through either setting up a new server or importing from an existing server. To make a USB disk for future installs you only need a very basic setup with no configuration for Server services. It’s handy to keep the two folders Applications and Mac OS X Install Data on the Desktop for copying to new drives that need to have Server installed.

 

This is a HACK and not officially sanctioned by Apple. If you use this method you do so at your own risk!!

I bought this drive with USB adaptor in February last year and it has given me endless problems which Seagate seem to be unable to fix. The problem is the drive constantly goes to sleep even in the middle of file transfers causing Finder crashes that require the computer to be force restarted – not good! Despite endless correspondence with their technical support I have been unable to resolve this issue and they reply with the same solutions , none of which are any use. A quick look at the Amazon pages for Customer Reviews will show that I’m not alone with this problem. My advice is do not buy this drive under any circumstances.

I have just completed tests with Lion Server 10.7.2, iOS 5 and Profile Manager and pronounce success. I have also completely documented my entire set up and configuration procedure for doing this and can now offer this service for clients.

From Apple’s website:

“Profile Manager offers you simple yet powerful ways to set up and remotely manage computers running Lion and iOS devices such as iPad and iPhone. It also simplifies the creation of new configuration profiles and user accounts for mail, calendar, contacts, and chat; enforcement of restrictions; PIN and password policies; configuration of system settings; and more. Because it’s integrated with the Apple Push Notification service, Profile Manager can send out updated configurations over the air automatically. And it includes web-based administration, so you can manage your server from any modern web browser. Profile Manager even gives users access to a self-service web portal where they can download and install new configuration profiles, as well as clear passcodes and remotely lock or wipe devices that are lost or stolen.”

Please contact me at info@hkmacs.com or call (852) 93486884 for further information.

I saw this today on Macintouch. If it works, which I presume it does, it’s very clever:

MacInTouch Reader

I often use “local” SIM cards when traveling overseas. To continue to receive incoming calls, here is what I’ve done:
For a minimal fee (much less than international roaming) get a “Skype In” phone number. Also charge up some “Skype out” minutes.
Before getting on the plane, forward your cell phone to your Skype In number. (You don’t have to give people the number.) when you get to your destination, have Skype forward calls to your local cell phone when you’re not logged in. People calling your mobile in the US get through to you on your international mobile and you pay minimal rates. The same thing can be set up with google voice and some other VOIP solutions.

One of the most compelling reasons for upgrading to iOS 5 is iMessage which allows you to send text messages (SMS & MMS) for free, bypassing your carrier’s rip-off fees.

Messages bypass carriers’ systems whenever you communicate in the app with another iOS 5 user, whether on an iPhone or an iPod touch or iPad. For iPhones, your phone number is registered in the system, while an email associated with an Apple ID is connected for all iOS hardware. You can later add other email addresses. You can even start a conversation on one of your iOS devices and pick up where you left off on another.

Start a message to someone whose phone number or email address is registered in iOS 5, and Message switches the color of the text balloons from green to blue, and displays “iMessage” in grayed-out type in the field in which you tap in text.

iMessage works across carriers and international borders, and is free. When a message is received, Messages shows the word “Delivered” in small type under the corresponding blue balloon. An iOS 5 user can configure Messages to also show when a message is read, but you may find you’re giving away too much information to the sender. (Apple turns that option off by default.)

Using iMessage and WhatsApp, you’ll never need to pay for another text message again.

I will be available to upgrade your iPhone, iPad or iPod touch to iOS 5 subject to my usual fees. If you have any of the models listed I will download the update in advance and come to your home or office to upgrade (within Hong Kong only):

• iPhone 3GS
• iPhone 4
• iPad (any model)
• iPod touch 3G or 4G
• Apple TV2

Please call +852 9348 6884 or email to info@hkmacs.com for further information