|
Size: 877
Comment: same initial setup bugs
|
Size: 1055
Comment: acl manually applied for apache logs
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 11: | Line 11: |
| * Default /etc/hosts is no good, sets shelob to loopback, with no ipv6. Had to munge like ServerGibran to public IP and add IPv6 alias. Really need to look deeper into this before perpetuating bad practice even further. | * Default /etc/hosts is no good, sets shelob to loopback, with no ipv6. Had to munge like ServerGibran to public IP and add IPv6 alias. Really need to look deeper into this before perpetuating bad practice even further. === Apache/Domtool Permissions === * had to manually `setfacl -m user:domtool:rx /var/log/apache2/` so that domtool can create user log folders. Should be done via puppet. |
shelob.hcoop.net is a virtual machine at DigitalOcean that will become our primary webserver, and replaces ServerNavajos.
It is named after a giant spider from Lord of the Rings.
1. Setup Notes
Similar issues as ServerMarsh and ServerMinsky
- had to manually add "domain hcoop.net" to resolv.conf
- had to open puppetserver port 8140 (bootstrap problem: new server can't connect to the puppetserver to request a cert, so it can't add its ip to the whitelist...). Will be fixed once we can just get our own /24 and whitelist everything in it.
Default /etc/hosts is no good, sets shelob to loopback, with no ipv6. Had to munge like ServerGibran to public IP and add IPv6 alias. Really need to look deeper into this before perpetuating bad practice even further.
1.1. Apache/Domtool Permissions
had to manually setfacl -m user:domtool:rx /var/log/apache2/ so that domtool can create user log folders. Should be done via puppet.