1 ******************************************************************************
5 ******************************************************************************
6 * Please add new entries in reverse chronological order whenever you make *
7 * changes to this system (first command at top, last at bottom) *
8 ******************************************************************************
11 * Configured /etc/aliases to have root go to mjgoins, micah, dkg, jrollins
12 * Configured /etc/nullmailer/remotes to have mail.riseup.net so remote delivery will work
13 * Removed the hundreds of queued cron emails that had resulted in 30gig of mail.err logs
14 * Rotated the giant logs out
17 * aptitude update && aptitude full-upgrade
18 * brought monkeysphere up to 0.19-1
22 * aptitude update && aptitude full-upgrade
23 * brought monkeysphere up to 0.16-1
24 * repointed keyserver usage to pool.sks-keyservers.net
27 * added two mime-type declarations in /etc/mathopd.conf so .debs
28 and .tar.gz files come out reasonably; restarted mathopd for the
30 * built monkeyshell (from src/monkeyshell) and installed as
31 /usr/local/bin/monkeyshell, added to /etc/shells.
32 * created new account "monkey" which has monkeyshell as the shell
33 for non-privileged test access. To let someone test this out,
34 make sure they're well-connected to george's web of trust, and
35 then add their User ID to
36 ~monkey/.monkeysphere/authorized_user_ids
37 * more mime types for mathopd: image/png image/x-icon
40 * migrated /home/*/.config/monkeysphere/authorized_user_ids to new
41 agreed location: /home/*/.monkeysphere/authorized_user_ids and created
42 a symlink in the original location for transition purposes. Also,
43 did /root's as well. I used this hackish mechanism:
44 $ for user in `find . -wholename './*/.config/monkeysphere/authorized_user_ids' \
45 | cut -d/ -f2`; do mkdir -v ${user}/.monkeysphere; chown ${user}:${user} \
46 ${user}/.monkeysphere; mv -v ${user}/.config/monkeysphere/authorized_user_ids \
47 ${user}/.monkeysphere; ln -s /home/${user}/.monkeysphere/authorized_user_ids \
48 ${user}/.config/monkeysphere/authorized_user_ids; done
51 * added the monkeysphere archive repository signing key
52 * aptitude update && aptitude full-upgrade (brings in monkeysphere 0.13-1)
53 * cleaned up /etc/skel to reflect correct location of the
54 monkeysphere config directory.
55 * micah moved all the existing config stuff over, and left
56 symlinks so people aren't disoriented.
59 * set up http://dkg.monkeysphere.info so that i could play around
61 * moved apt repository over to http://archive.monkeysphere.info/
62 * aptitude update && aptitude dist-upgrade
63 * canonicalizing hostname for normal web access to
64 http://web.monkeysphere.info
67 * aptitude update && aptitude full-upgrade
68 * added account 'daniel' for Dan Scott, and set him up with a way
69 to publish to http://daniel.monkeysphere.info
72 * aptitude update && aptitude dist-upgrade: this includes
73 monkeysphere 0.11-1 and OpenSSH 5.1p1-2
76 * moved monkeysphere apt repo entry to
77 /etc/apt/sources.list.d/monkeysphere.list
78 * aptitude update && aptitude full-upgrade (including monkeysphere
80 * switched george's monkeysphere-server preferred keyserver to
81 monkeysphere.info for the moment. Both pgp.mit.edu and
82 subkeys.pgp.net are sluggish right now :/
85 * removed stale branches from jrollins from the master repo
86 * aptitude update && aptitude full-upgrade
87 * restarted services to clear up dependencies on old libraries
90 * aptitude update && aptitude full-upgrade
91 * restarted services to clear up dependencies on old libraries
94 * aptitude update && aptitude dist-upgrade
95 * removed debian's experimental from the sources.list
96 * removed experimental stanza from /etc/apt/preferences (now the
97 monkeysphere packages should upgrade automatically)
98 * upgraded to monkeysphere 0.7-1
100 * set up a public git daemon service to serve git repos from
101 george, using runit. (root-served repos are served from
102 /srv/git, but ~USER/public_git is supported as well, if anyone
103 wants to use that for publication).
106 * aptitude update && aptitude dist-upgrade
108 * added my User ID to ~webmaster/.config/monkeysphere/authorized_user_ids
110 2008-08-02 - jrollins
111 * aptitude update && aptitude dist-upgrade
112 * restarted cron, nullmailer, sshd
113 * aptitude install git-core ikiwiki
116 * created a bare repo at ~webmaster/monkeysphere.git. I then
117 pushed into this repo from my working directory on servo to verify
118 that it was accepting.
119 * cloned above repo at ~webmaster/monkeysphere
120 * created ~webmaster/ikiwiki.setup
121 * ikiwiki --setup ikiwiki.setup
122 * linked post-receive to new post-commit hook in monkeysphere.git
123 * changed default keyserver to be pgp.mit.edu (subkeys.pgp.net
125 * updated /etc/skel with ssh and monkeysphere stuff
126 * made authorzied_user_ids file for webmaster and ran
127 "monkeysphere-server u webmaster".
130 * added monkeysphere apt repository to /etc/apt/sources.list
131 * added dkg's key to apt's list of trusted keys.
132 * ran aptitude dist-upgrade
133 * upgraded to monkeysphere 0.2-1
134 * moved authorized_user_ids files into users' home directories.
135 * installed lockfile-progs
138 * installed screen (mjgoins and i were collaborating)
141 * Restored /etc/init.d/ssh to original package state and changed
142 /etc/default/ssh to have 'unset SSHD_OOM_ADJUST' instead.
145 * Commented out the 'export SSHD_OOM_ADJUST=-17' from the
146 /etc/init.d/ssh initscript, and the 'SSHD_OOM_ADJUST=-17' from
147 /etc/default/ssh in order to make this error go away:
148 "error writing /proc/self/oom_adj: Operation not permitted"
149 (c.f. Debian #487325)
152 * touched /etc/environment to get rid of some spurious auth.log
154 * turned up sshd's LogLevel from INFO to DEBUG
157 * installed rsync (for maintaining a public apt repo)
159 * configured mathopd to listen on port 80, serving /srv/www as /
160 and /srv/apt as /debian. We've got nothing in /srv/www at the
163 * installed lsof and psmisc as sysadmin utilities. sorry for the
166 * installed strace to try to figure out why onak is segfaulting.
169 * removed etch sources, switched "testing" to "lenny", added
170 lenny/updates, removed all contrib and non-free.
172 * removed testing pin in /etc/apt/preferences
175 * reset emacs22 to emacs22-nox (avoiding dependencies)
177 * removed sysklog and klogd because of errors restarting klogd.
178 Installed syslog-ng in their stead, which still gives errors
179 related to /proc/kmsg unreadability, but the install completes :/
182 * juggled pinning: experimental: 1, unstable: 2
183 * added mathopd onak, tweaked /etc/mathopd.conf and /etc/onak.conf
185 * installed monkeysphere v0.1-1, changed host key, published
186 them via the local keyserver (see host-key-publication)
188 * added local unprivileged user accounts for everyone listed in
189 /usr/share/doc/monkeysphere/copyright
191 * configured authorized_user_ids for every user account based on
192 my best guess at their OpenPGP User ID (see
193 user-id-configuration).
195 * set up a cronjob (in /etc/crontab) to run "monkeysphere-server
196 update-users" at 26 minutes past the hour.
198 2008-06-18 - jrollins
199 * installed less, emacs;
200 * aptitude update && aptitude dist-upgrade
203 * debootstrap'd debian etch install
204 * installed /etc/apt/sources.list with local proxy sources for etch,
205 testing, unstable, backports and volatile
206 * configured /etc/apt/preferences and apt.conf.d/local-conf to
207 pin etch, but make testing, sid and backports available
208 * added backports.org apt-key
209 * installed openssh-server and openssh-client packages
210 * added dkg, jrollins, mjgoins ssh public_keys to /root/.ssh/authorized_keys