Ali's questions

I want to let my IAM users to setup their own MFA devices, through the console, is there a single policy that I can use to achieve this?

So far I can achieve this through a number of IAM policies, letting them list all mfa devices and list users (so that they can find themselves in the IAM console and ...

I am basically looking for a more straight forward way of controlling this.

I should add that my IAM users are trusted users, so I don't have to (although it will be quite nice) lock them down to the minimum possible, so if they can see a list of all users that is ok.

Are there any trusted low profile Windows AMIs out there?
By low profile I mean client class windows, with minimal disk use.
Basically I need to provide a number of clients with remote access terminals for an education project.
The smallest windows installation provided by amazon is a windows server 2008 (if I am not mistaken) and it needs a 30GB disk. Are there other trusted (I mean from trusted sources) AMIs that I can use that use smaller disks? on the Micro instances.

I want to know if anybody has done any hands on test mounting NFS on Windows XP using "Windows services for Unix" http://www.microsoft.com/download/en/details.aspx?id=274

I know that it should work but I want to know if people have had any problem with it or can it reliably replace Samba sharing?

for some rather strange reason my sharing preferences tab crashes (it's a long story and there seems to be no good solution for it, it's looking for a ui object that no longer exists).

Anyway, I want to enable internet sharing to share my macbook's internet connection with my iPad but I can't find a way to do it without the gui or apple script (which basically calls the gui).

I have an Ubuntu server running PostgreSQL and a very light weight custom web-server.

I knew this would happen but I was too busy, and now the disk has 0 bytes free. I don't need all the data in the database and I've already deleted lots of rows in some tables, but the space won't be freed until the database is "vacuumed", and to do the vacuum I need lots of free disk space.

What can I do? This is an Amazon EC2 instance.

Is there any merit in installing a virtual machine with OpenBSD and pf (or any other simple and secure OS + iptable) on a mac laptop and routing all the traffic through that machine? I read a similar set up for corporate laptops running windows (I thing I read this in BSD magazine). They claim that Windows machines are too hard to secure and if you are taking them to the wild (public wireless, hotels, ...) you'd better but a secure OS in between! If you think this is a good idea, how you route all the traffic on a mac through the virtual machine and prevent any application or service to go directly? I am not sure if just setting the gateway will do that, what about DNS? you don't want anybody to fool you with DNS cache poisoning or similar attacks either.