1 ******************************************************************************
5 ******************************************************************************
6 * Please add new entries in reverse chronological order whenever you make *
7 * changes to this system (first command at top, last at bottom) *
8 ******************************************************************************
11 * added two mime-type declarations in /etc/mathopd.conf so .debs
12 and .tar.gz files come out reasonably; restarted mathopd for the
14 * built monkeyshell (from src/monkeyshell) and installed as
15 /usr/local/bin/monkeyshell, added to /etc/shells.
16 * created new account "monkey" which has monkeyshell as the shell
17 for non-privileged test access. To let someone test this out,
18 make sure they're well-connected to george's web of trust, and
19 then add their User ID to
20 ~monkey/.monkeysphere/authorized_user_ids
21 * more mime types for mathopd: image/png image/x-icon
24 * migrated /home/*/.config/monkeysphere/authorized_user_ids to new
25 agreed location: /home/*/.monkeysphere/authorized_user_ids and created
26 a symlink in the original location for transition purposes. Also,
27 did /root's as well. I used this hackish mechanism:
28 $ for user in `find . -wholename './*/.config/monkeysphere/authorized_user_ids' \
29 | cut -d/ -f2`; do mkdir -v ${user}/.monkeysphere; chown ${user}:${user} \
30 ${user}/.monkeysphere; mv -v ${user}/.config/monkeysphere/authorized_user_ids \
31 ${user}/.monkeysphere; ln -s /home/${user}/.monkeysphere/authorized_user_ids \
32 ${user}/.config/monkeysphere/authorized_user_ids; done
35 * added the monkeysphere archive repository signing key
36 * aptitude update && aptitude full-upgrade (brings in monkeysphere 0.13-1)
37 * cleaned up /etc/skel to reflect correct location of the
38 monkeysphere config directory.
39 * micah moved all the existing config stuff over, and left
40 symlinks so people aren't disoriented.
43 * set up http://dkg.monkeysphere.info so that i could play around
45 * moved apt repository over to http://archive.monkeysphere.info/
46 * aptitude update && aptitude dist-upgrade
47 * canonicalizing hostname for normal web access to
48 http://web.monkeysphere.info
51 * aptitude update && aptitude full-upgrade
52 * added account 'daniel' for Dan Scott, and set him up with a way
53 to publish to http://daniel.monkeysphere.info
56 * aptitude update && aptitude dist-upgrade: this includes
57 monkeysphere 0.11-1 and OpenSSH 5.1p1-2
60 * moved monkeysphere apt repo entry to
61 /etc/apt/sources.list.d/monkeysphere.list
62 * aptitude update && aptitude full-upgrade (including monkeysphere
64 * switched george's monkeysphere-server preferred keyserver to
65 monkeysphere.info for the moment. Both pgp.mit.edu and
66 subkeys.pgp.net are sluggish right now :/
69 * removed stale branches from jrollins from the master repo
70 * aptitude update && aptitude full-upgrade
71 * restarted services to clear up dependencies on old libraries
74 * aptitude update && aptitude full-upgrade
75 * restarted services to clear up dependencies on old libraries
78 * aptitude update && aptitude dist-upgrade
79 * removed debian's experimental from the sources.list
80 * removed experimental stanza from /etc/apt/preferences (now the
81 monkeysphere packages should upgrade automatically)
82 * upgraded to monkeysphere 0.7-1
84 * set up a public git daemon service to serve git repos from
85 george, using runit. (root-served repos are served from
86 /srv/git, but ~USER/public_git is supported as well, if anyone
87 wants to use that for publication).
90 * aptitude update && aptitude dist-upgrade
92 * added my User ID to ~webmaster/.config/monkeysphere/authorized_user_ids
95 * aptitude update && aptitude dist-upgrade
96 * restarted cron, nullmailer, sshd
97 * aptitude install git-core ikiwiki
100 * created a bare repo at ~webmaster/monkeysphere.git. I then
101 pushed into this repo from my working directory on servo to verify
102 that it was accepting.
103 * cloned above repo at ~webmaster/monkeysphere
104 * created ~webmaster/ikiwiki.setup
105 * ikiwiki --setup ikiwiki.setup
106 * linked post-receive to new post-commit hook in monkeysphere.git
107 * changed default keyserver to be pgp.mit.edu (subkeys.pgp.net
109 * updated /etc/skel with ssh and monkeysphere stuff
110 * made authorzied_user_ids file for webmaster and ran
111 "monkeysphere-server u webmaster".
114 * added monkeysphere apt repository to /etc/apt/sources.list
115 * added dkg's key to apt's list of trusted keys.
116 * ran aptitude dist-upgrade
117 * upgraded to monkeysphere 0.2-1
118 * moved authorized_user_ids files into users' home directories.
119 * installed lockfile-progs
122 * installed screen (mjgoins and i were collaborating)
125 * Restored /etc/init.d/ssh to original package state and changed
126 /etc/default/ssh to have 'unset SSHD_OOM_ADJUST' instead.
129 * Commented out the 'export SSHD_OOM_ADJUST=-17' from the
130 /etc/init.d/ssh initscript, and the 'SSHD_OOM_ADJUST=-17' from
131 /etc/default/ssh in order to make this error go away:
132 "error writing /proc/self/oom_adj: Operation not permitted"
133 (c.f. Debian #487325)
136 * touched /etc/environment to get rid of some spurious auth.log
138 * turned up sshd's LogLevel from INFO to DEBUG
141 * installed rsync (for maintaining a public apt repo)
143 * configured mathopd to listen on port 80, serving /srv/www as /
144 and /srv/apt as /debian. We've got nothing in /srv/www at the
147 * installed lsof and psmisc as sysadmin utilities. sorry for the
150 * installed strace to try to figure out why onak is segfaulting.
153 * removed etch sources, switched "testing" to "lenny", added
154 lenny/updates, removed all contrib and non-free.
156 * removed testing pin in /etc/apt/preferences
159 * reset emacs22 to emacs22-nox (avoiding dependencies)
161 * removed sysklog and klogd because of errors restarting klogd.
162 Installed syslog-ng in their stead, which still gives errors
163 related to /proc/kmsg unreadability, but the install completes :/
166 * juggled pinning: experimental: 1, unstable: 2
167 * added mathopd onak, tweaked /etc/mathopd.conf and /etc/onak.conf
169 * installed monkeysphere v0.1-1, changed host key, published
170 them via the local keyserver (see host-key-publication)
172 * added local unprivileged user accounts for everyone listed in
173 /usr/share/doc/monkeysphere/copyright
175 * configured authorized_user_ids for every user account based on
176 my best guess at their OpenPGP User ID (see
177 user-id-configuration).
179 * set up a cronjob (in /etc/crontab) to run "monkeysphere-server
180 update-users" at 26 minutes past the hour.
182 2008-06-18 - jrollins
183 * installed less, emacs;
184 * aptitude update && aptitude dist-upgrade
187 * debootstrap'd debian etch install
188 * installed /etc/apt/sources.list with local proxy sources for etch,
189 testing, unstable, backports and volatile
190 * configured /etc/apt/preferences and apt.conf.d/local-conf to
191 pin etch, but make testing, sid and backports available
192 * added backports.org apt-key
193 * installed openssh-server and openssh-client packages
194 * added dkg, jrollins, mjgoins ssh public_keys to /root/.ssh/authorized_keys