Very Computer

A question:

My direct superior, The VP of OPS, who was once long ago an SA as well,
gave me a directive of 98% availability. Needless to say that leaves a huge
'?'. I was wondering if you guys would help me define what the deliverable
really is when someone says 98% avail.

Here's our scenario:
1. The rookie hero, yours truly, a capable NT admin who is now doing SCO
Unix, for the last 6 months, who had not had a formal training in SA let
alone UNIX. In short, don't make any assumptions as to my skills.
2. The suspect, a Intel based machine, consists of 128mg, 14 GB on three
drives, 2 200PPros, etc. Takes pride in being the best of breed, with no
generic parts, and no new gewgaws. Runs SCO 5.0.2. Keeps 5 programmers and
3 QA people in food, clothing and shelter. Has a tendency to be far to open
to change, root password on the loose.
3. The goal: how do I define uptime?
To wit:
What is a reasonable percentage and sample time?
If not what can be achieved without redundant parts or systems?
What items are normally considered out of my control besides acts of God?
How do I record and verify this info?

I am in the hot seat, about to be reassigned to cross walk duty or worse.
Please help.

Russ Conner
SA
Intrix Systems Grou

Quote:> Here's our scenario:
> 1. The rookie hero, yours truly, a capable NT admin who is now doing SCO
> Unix, for the last 6 months, who had not had a formal training in SA let
> alone UNIX. In short, don't make any assumptions as to my skills.

Quote:> 2. The suspect, a Intel based machine, consists of 128mg, 14 GB on three
> drives, 2 200PPros, etc. Takes pride in being the best of breed, with no
> generic parts, and no new gewgaws. Runs SCO 5.0.2. Keeps 5 programmers and
> 3 QA people in food, clothing and shelter. Has a tendency to be far to open
> to change, root password on the loose.

Find out how many of the rest of the logon ids have group zero
priveledges (cat /etc/groups).  This gives them essentially the same
security level as root, except for those processes that explicitly look
for the name 'root'.

Quote:> 3. The goal: how do I define uptime?
> To wit:
> What is a reasonable percentage and sample time?

Quote:> If not what can be achieved without redundant parts or systems?

Quote:> What items are normally considered out of my control besides acts of God?

Also need to coordinate with you local power company as to what their
scheduled down times in your area are, and get a contact name from them
so you can deal with those "non-scheduled events". :)

Quote:> How do I record and verify this info?

Quote:

> I am in the hot seat, about to be reassigned to cross walk duty or worse.
> Please help.

> Russ Conner
> SA
> Intrix Systems Grou

If you have a catastrophic power hit, which is usually bad for Unix
file systems, you would need a UPS and deisel generator for power backup.
I would think all the network equipment would be on the UPS and generator
as well as the company PBX.

If there are any databases on the system, they need to be up even when
being backed up.  So you'll need a tape library and backup software to
ensure this.  Also institute a backup schedule and disaster recovery
procedure.

Being given this 98% metric as a charter is reasonable if you're running
the right hardware and solutions to accomplish it.  If you're expected
to do this without spending money, your boss is essentially saying YOU
are the squirrel in the cage when the power goes out rather than a deisel
generator.  I'd update my resume at that point, but then I've been there
and don't want this type of responcibility any more.  If you price out
the stuff needed to provide the 98% metric and he won't go for it, cut
the cost into chunks and he can decide on the risk vs. cost implementing
what he's willing to pay for.  Remember: TANSTAFFL (there ain't no such
thing as a free lunch).

/MeV/

--
Michael Vilain
Certified Rolfer(reg)
http://www.slip.net/~vilain
[remove "NOSPAM." from my address to reply]

Also consider the use of sudo (freeware) or writing setuid programs
to allow doing specific tasks as root without giving out general root
access.  Of course, one has to be very, very careful to ensure that
these methods don't have bugs that allow general root access, since
bugs in setuid programs are a common source of security holes.

--
------------------------------------------------------------------------

Unsolicited bulk or commercial email is not welcome.             netcom.com
No warranty of any kind is provided with this message.

########################################################################

Company:

Quote:>    Medimurska banka                <URL=http://www.open.hr/com/mb>

########################################################################

Quote:> My direct superior, The VP of OPS, who was once long ago an SA as well,
> gave me a directive of 98% availability. Needless to say that leaves a huge
> '?'. I was wondering if you guys would help me define what the deliverable
> really is when someone says 98% avail.

        2% of an hour is 1.2 minutes.
        2% of an 8 hour work day is nearly 5 minutes.
        2% of a 24 hour day is nearly 15 minutes.
        2% of a 40 hour work week is more than 45 minutes.
        2% of a 24x7 week is 3.5 hours.

The tricks to making this work are:

1) Plan scheduled outage times which do not count against the average.

2) Have a UPS with good power conditioning, trim and boost capabilities,
   so that you don't have to deal with power glitches.

3) Pay attention to the 24 hour temperature of your machine room and
   the insides of cabinets.  Heat fatigues hardware and hard drives.

4) Keep resources available.  Continuous load average should be no greater
   than the number of processors; continuous disk and memory usage
   should leave "healthy" breathing room.  The machine should not swap.

5) Buy Hardware RAID subsystems for all hard drives, complete with hot
   spares.

6) Don't share the root password with anyone who does not share
   responsibility for the uptime average.

7) Have a second machine upon which you pre-flight risky actions.

Quote:>A question:

>My direct superior, The VP of OPS, who was once long ago an SA as well,
>gave me a directive of 98% availability. Needless to say that leaves a huge
>'?'. I was wondering if you guys would help me define what the deliverable
>really is when someone says 98% avail.

Quote:>Here's our scenario:
>1. The rookie hero, yours truly, a capable NT admin who is now doing SCO
>Unix, for the last 6 months, who had not had a formal training in SA let
>alone UNIX. In short, don't make any assumptions as to my skills.
>2. The suspect, a Intel based machine, consists of 128mg, 14 GB on three
>drives, 2 200PPros, etc. Takes pride in being the best of breed, with no
>generic parts, and no new gewgaws. Runs SCO 5.0.2. Keeps 5 programmers and

with smart purchasing and reusing parts laying around you could get this setup
 with about $300 though the main system will not be as fast.... but of course
 you could use the test bed to do trival tasks.... as well removing them from
 the main system.

Quote:>3 QA people in food, clothing and shelter. Has a tendency to be far to open
>to change, root password on the loose.
>3. The goal: how do I define uptime?
>To wit:
>What is a reasonable percentage and sample time?
>If not what can be achieved without redundant parts or systems?
>What items are normally considered out of my control besides acts of God?
>How do I record and verify this info?

>I am in the hot seat, about to be reassigned to cross walk duty or worse.
>Please help.

>Russ Conner
>SA
>Intrix Systems Grou

--

Sysadmin, Insync Internet Services  |  believing in it, doesn't go away."
BOFH, Wielder of the sacred LART    |           -- Philip K.*

Geoff...

########################################################################

Company:

Quote:>    Medimurska banka                <URL=http://www.open.hr/com/mb>

########################################################################

I was saying that it's terribly easy with a UNIX system to have considerably
higher than 98% uptime.  The worst lack of uptime I'm aware of on any of my
UNIX machines over the past year is about 6 hours, with several machines
having under 5 minutes downtime in the year.  Both of those values calculate
to well above 99% uptime.

--

Sysadmin, Insync Internet Services  |  believing in it, doesn't go away."
BOFH, Wielder of the sacred LART    |           -- Philip K.*