Infrastructure todo

From Smop.co.uk

Jump to: navigation, search

High priority items:

  • dns master/slave
  • osiris (HIDS)


Medium priority items:

  • puppet (ongoing)
    • ripley, ferro, spunkmeyer
    • apache - ldap auth (backuppc etc)
    • phpldapadmin (config + posixAccount.xml, simpleSecurityObject.xml)
    • bind (inc /etc/default/bind9 + resolvconf)
    • certificates (and what about keys - don't want any box being able to download them)
    • dovecot
    • firehol (inc /etc/services)
    • network settings on firewalls, ripley
    • /root
  • ntp? (ripley _only_ - xen syncs the rest)
  • git repository
    • import subversion
    • import ~/tosort
    • import CVS
  • ldap addressbook
  • email spam/ham addresses/folders
  • initial spam/ham training:
    • /usr/bin/sa-learn --spam -p /var/amavisd/.spamassassin/ user_prefs --mbox /var/mail/spam
  • monitoring
  • backup - mysqldump (and exclude from normal backup), ferro, spunkmeyer, ripley
  • prune /var/lib/amavis/virusmails and skip from backups (use puppet's "tidy" type)
  • documentation
    • apache setup
    • puppet setup
    • DNS setup
    • LDAP client setup
    • Firehol setup

Low priority jobs:

  • vpn (openvpn)
  • synergy desktop merger?
  • backup - remote
  • gallery (done, need to import camera photos now)
  • humax code - update with fixes
  • stop fetchmail/hants email errors (80% done)
  • sec (log watching)
  • external deb repository
  • ACPI (including fans, monitor) at 00:30 automatically


Items to tick off:

  • ensure everything starts okay on boot - xen host and guests
    • 90% done now - just autostart domains AFAIK
  • dhcpd (CHECK)
  • ensure old xbox disk is unlocked


Problems:

  • identify causes of hangs
    • http://wiki.xensource.com/xenwiki/XenWifi ?
    • definitely ADSL router/ADSL issues (packets going out of perimeter firewall, no response)
    • 1458 MTU/PMTU? (getting back DF set correctly though)
    • "ethtool -K ... tx off"? comment
      • I'm going to set this anyhow as a simple nc|pv between domU's goes from 1.5MB/s -> 12MB/s)
  • humax channel 65534 bug


"Spare time" jobs:

  • remove old "cerberos" backup
  • remove old "wyvern" backup
  • remove old "laptop" backup
  • mediabox
  • samba
  • voip
  • netboot (net/iscsi) firewalls (log to iscsi)
  • FreeNX
  • jabber
  • fix up xbox
  • wpa
  • NIDS (snort)
  • IRC proxy
  • firehol on each box
  • desktop search


Dropped:

  • dvorak
  • mutt on laptop
    • will stick with evolution for now :(
    • requirement to send text&html email is a bit of a problem
    • also need to use msmtp
Retrieved from "http://www.smop.co.uk/mediawiki/index.php/Infrastructure_todo"
Personal tools