1 ******************************************************************************
3 * zimmermann system log *
5 ******************************************************************************
6 * Please add new entries in reverse chronological order whenever you make *
7 * changes to this system (first command at top, last at bottom) *
8 ******************************************************************************
11 * Updated /etc/monkeysphere/*.conf to use zimmermann
15 * transferred the https://z.m.o key from /root/.gnupg into the
16 monkeysphere-host keyring with:
18 gpg --export-secret-keys | GNUPGHOME=/var/lib/monkeysphere/host gpg --import
20 * used undocumented "monkeysphere-host update-pgp-pub-file" to
21 refresh the output of m-h s.
24 * upgraded to monkeysphere 0.28-1~bpo50+1 (includes gnupg from
28 * manually created an OpenPGP certificate for zimmermann's https
29 RSA key, stored in /root/.gnupg; published it to the keyserver
30 network, certified it myself.
33 * zimmermann now uses an X.509 certificate signed by the MF/PL CA
34 for its HTTPS connection.
37 * added 10 SKS peers as a result of feedback from sks-devel.
38 * set localtime to America/New_York via dpkg-reconfigure tzdata
39 * aptitude update && aptitude full-upgrade
40 * set up /var/lib/sks/www/index.html based on
41 doc/zimmermann/index.html from this repo.
42 * made nginx proxy plain ol' HTTP on port 80 also so that SKS does
43 not need to try to listen on a privileged port.
44 * turned on initial_stat and stat_hour: 3 in /etc/sks/sksconf
47 * aptitude install nginx
48 * get rid of /etc/nginx/sites-enabled/default
49 * create /etc/nginx/sites-available/https-proxy and make a symlink
50 to it in the sites-enabled directory
51 * invoke-rc.d nginx start
54 * verified the SHA256 values for the key material
55 * /usr/lib/sks/sks_build.sh (chose option #2: normalbuild)
56 * chown -R debian-sks:debian-sks /var/lib/sks
57 * edit /etc/default/sks to enable the initscript
58 * /etc/init.d/sks start
59 * rm -rf /var/lib/sks/dump
62 * aptitude update && aptitude full-upgrade
63 * aptitude install sks
64 * cd /var/lib/sks/dump ; wget -q -r -np -nd -A bz2,SHA256,asc \
65 http://nynex.net/keydump/ -e robots=off
66 * install monkeysphere 0.21-2 package
67 * apt-get install bzip2 ; bunzip2 /var/lib/sks/dump/*.bz2
70 * aptitude install esmtp-run mailx
71 * edited /etc/esmtp-run, configured to relay to bulk.mayfirst.org