savannah-cvs
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Savannah-cvs] [212] Continued SavannahHosts development.


From: bob
Subject: [Savannah-cvs] [212] Continued SavannahHosts development.
Date: Mon, 15 Aug 2016 22:25:36 +0000 (UTC)

Revision: 212
          
http://svn.sv.gnu.org/viewvc/?view=rev&root=administration&revision=212
Author:   rwp
Date:     2016-08-15 22:25:34 +0000 (Mon, 15 Aug 2016)
Log Message:
-----------
Continued SavannahHosts development.

Modified Paths:
--------------
    trunk/sviki/SavannahHosts.mdwn

Modified: trunk/sviki/SavannahHosts.mdwn
===================================================================
--- trunk/sviki/SavannahHosts.mdwn      2016-08-15 20:18:52 UTC (rev 211)
+++ trunk/sviki/SavannahHosts.mdwn      2016-08-15 22:25:34 UTC (rev 212)
@@ -87,14 +87,6 @@
 
     dpkg-reconfigure locales
 
-The /etc/resolv.conf file should be managed by resolvconf but isn't
-apparently set correctly.  Initially set this to bootstrap.
-
-    search savannah.gnu.org fsf.org
-    nameserver 208.118.235.95
-    nameserver 208.118.235.134
-    nameserver 46.43.37.71
-
 The VMs were handed to us including a `/usr/sbin/policy-rc.d` file
 that prevents services from starting during package upgrades.  (It has
 no effect during boot time.)  That was likely a mistake.  That file is
@@ -105,6 +97,8 @@
 
 Also the cloned ntpdate clock jumping script.  Eventually need to set
 up a local tightly coupled peer pool.  This following is mostly okay.
+The goal is to have at least three upstream servers and all of the VMs
+peering together.
 
     rm -f /usr/local/bin/clock-sync.sh /etc/cron.d/ntpdate
     apt-get install -y --purge ntp ntpdate-
@@ -120,7 +114,7 @@
 
 Install generally useful utilities.
 
-    apt-get install less screen htop wget dnsutils heirloom-mailx
+    apt-get install less screen htop wget dnsutils heirloom-mailx bind9-host
 
 This includes Emacs.  At the time of this writing version 24 is
 current and that number appears in the package names.  At future times
@@ -221,6 +215,14 @@
 does not include IPv6.  The IPv6 section will be updated in a future
 edit.
 
+The /etc/resolv.conf file should be managed by resolvconf but isn't
+apparently set correctly.  Initially set this to bootstrap.
+
+    search savannah.gnu.org fsf.org
+    nameserver 208.118.235.95
+    nameserver 208.118.235.134
+    nameserver 46.43.37.71
+
 Install the machine specific iptables firewall.  This is a very custom
 file that has many details of every IP address and subnet.
 
@@ -271,7 +273,10 @@
 email.  It configures to listen only on the loopback device making it
 completely isolated from the hostile Internet.  It isn't required as
 the default configuration prevents relaying but is a good idea.
+Update: The latest image build included an alias for root to the FSF
+admins which should be removed first.
 
+    sed --in-place '/^root:/d' /etc/aliases
     echo root: address@hidden >> /etc/aliases
     newaliases
 
@@ -469,5 +474,36 @@
 Host vcs0
 ---------
 
+The vcs0 host NFS mounts the data from the NFS server.  At the time of
+this writing the NFS server is the previous vcs host.  The hope is
+that a new VM for data0 will be created to host the data.  But there
+is no disk space for that VM.  Therefore we are compromising.
+
+    mkdir /net /net/vcs
+    /etc/fstab contains
+    ... vcs:/ /net/vcs nfs  defaults,async 0 0
+
 Host download0
 --------------
+
+Open questions:
+
+* Are people using download for a pserver?  There are notes to that
+  effect in the download /etc/default/iptables-rules file.
+
+The download0 host NFS mounts the data from the NFS server.  At the
+time of this writing the NFS server is the previous download host.
+The hope is that a new VM for data0 will be created to host the data.
+But there is no disk space for that VM.  Therefore we are
+compromising.
+
+    mkdir /net /net/download
+    /etc/fstab contains
+    ... download:/ /net/download nfs  defaults,async 0 0
+
+TO-DO Items
+-----------
+
+A place for me to list things that I know about but haven't gotten to yet.
+
+* Set up /etc/ssh/ssh_known_hosts file.




reply via email to

[Prev in Thread] Current Thread [Next in Thread]