|
Size: 857
Comment:
|
Size: 2739
Comment: setup notes
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 37: | Line 37: |
= Setup Notes = == Domtool == * Replaced outpost_ip in `hcoop.dtl` * Readded `outpost.hcoop.net` (no other subdomains) * Was not added as a nodeIp yet == Basic Packages == * Did '''not''' install `lm-sensors`, `hdparm` * Also installed: `emacs` (ClintonEbadi is utterly incapable of using vi effectively), `screen` (for performing all admin work in a way that will survive connection loss), and `build-essential` == Basic Configuration == * Added `root: logs@hcoop.net` to `/etc/aliases`. * Did not run any fs tuning operations * Did not set sources.list to use peer1 mirror (for obvious reasons) * Did not remove `/opt` (other ''lame'' directories were not present) * Did not replace the kernel (naturally) * Added lenny-backports to sources.list == OpenAFS == * Built `openafs-modules-source` from backports (1.4.12) using `module-assistant` * Installed openafs clients and kerberos from backports{{{ apt-get install -t lenny-backports openafs-client openafs-krb5 kstart krb5-user dpkg -i /afs/megacz.com/pub/software/libnss-afs/libnss-afs_1.10_i386.deb # saw nowhere else to get this! }}} * Kerberos is only 1.6, but mire is running an older version. * Verified kinit && aklog work after reboot == Authentication == * Left PAM and nsswitch with stock configuration as the instructions appear to not be particularly applicable anymore given the configuration of `fritz`. * Did not setup `login.restrict` (pending resolution of what to do about accounts / kerberos / nss &c) * Did not create host principal for ssh * Did not enable sudoers yet == Miscellaneous == * Set proper search domain in `resolv.conf` and added `deleuze` as a name server, but left the other two tech.coop DNS servers * Setup hcoop-clean-tmp cron job * Replaced exim with ssmtp based upon the configuration on `mire` |
1. Outpost info
Outpost is hosted at Tech.Coop to have a DNS server on a subnet different than our primary subnet.
It was previously a 64-bit OS, also at Tech.Coop, but hosted in UK @ Bytemark.
Now it is in the US and is a 32-bit Debian lenny.
1.1. Xen console
ssh to xen-seven.tech.coop as user hcoop
1.2. General Information
- Hostname : outpost
- Distribution : lenny
- Partitions : swap 1024mb (swap)
- / 10g (ext3)
- Image type : full
- Memory size : 512mb
- Kernel path : /boot/vmlinuz-2.6.18-6-xen-686
- Initrd path : /boot/initrd.img-2.6.18-6-xen-686
1.3. Networking Information
- IP Address 1 : 74.115.254.28 [MAC: 00:16:3E:5F:79:E6]
- Netmask : 255.255.255.224
- Broadcast : 74.115.254.31
- Gateway : 74.115.254.1
1.4. Access info
Login/pw are in standard HCoop password stash.
2. Setup Notes
2.1. Domtool
Replaced outpost_ip in hcoop.dtl
Readded outpost.hcoop.net (no other subdomains)
- Was not added as a nodeIp yet
2.2. Basic Packages
Did not install lm-sensors, hdparm
Also installed: emacs (ClintonEbadi is utterly incapable of using vi effectively), screen (for performing all admin work in a way that will survive connection loss), and build-essential
2.3. Basic Configuration
Added root: logs@hcoop.net to /etc/aliases.
- Did not run any fs tuning operations
- Did not set sources.list to use peer1 mirror (for obvious reasons)
Did not remove /opt (other lame directories were not present)
- Did not replace the kernel (naturally)
- Added lenny-backports to sources.list
2.4. OpenAFS
Built openafs-modules-source from backports (1.4.12) using module-assistant
Installed openafs clients and kerberos from backports
apt-get install -t lenny-backports openafs-client openafs-krb5 kstart krb5-user dpkg -i /afs/megacz.com/pub/software/libnss-afs/libnss-afs_1.10_i386.deb # saw nowhere else to get this!
- Kerberos is only 1.6, but mire is running an older version.
Verified kinit && aklog work after reboot
2.5. Authentication
Left PAM and nsswitch with stock configuration as the instructions appear to not be particularly applicable anymore given the configuration of fritz.
Did not setup login.restrict (pending resolution of what to do about accounts / kerberos / nss &c)
- Did not create host principal for ssh
- Did not enable sudoers yet
2.6. Miscellaneous
Set proper search domain in resolv.conf and added deleuze as a name server, but left the other two tech.coop DNS servers
- Setup hcoop-clean-tmp cron job
Replaced exim with ssmtp based upon the configuration on mire