Difference between revisions of "Jalapeno"

From Nuclear Physics Group Documentation Pages
Jump to navigationJump to search
Line 7: Line 7:
  
  
== Access Configuration ==
 
=== /etc/security/access.conf ===
 
<pre># NPG Config:
 
# Allow direct root logins only from console and einstein
 
+ : root : LOCAL einstein.unh.edu einstein.farm.physics.unh.edu lentil.unh.edu lentil.farm.physics.unh.edu
 
  
# Allow only administrators
+
 
- : ALL EXCEPT domain_admins : ALL
 
</pre>
 
 
== Backup Configuration ==
 
== Backup Configuration ==
 
=== /etc/rsync-backup.conf ===
 
=== /etc/rsync-backup.conf ===

Revision as of 19:36, 18 November 2009

General Information

Jalapeno is a virtual machine Hostnames: jalapeno.unh.edu, jalapeno.farm.physics.unh.edu

Jalapeno is our DNS server.



Backup Configuration

/etc/rsync-backup.conf

# Backups are 'pull' only.  Too bad there isn't a better way to enforce this.
read only       = yes

# Oh for the ability to retain CAP_DAC_READ_SEARCH, and no other.  
#uid            = root
# XXX There seems to be an obscure bug with pam_ldap and rsync whereby 
# getpwnam(3) segfaults when (and only when) archiving /etc.  Using a numeric
# uid avoids this bug.  Only verified on Fedora Core 2.
uid             = 0

# There's not much point in putting the superuser in a chroot jail
# use chroot    = yes

# This isn't really an effective "lock" per se, since the value is per-module,
# but there really ought never be more than one, and it would at least 
# ensure serialized backups.
max connections = 1

[usr_local]
        path    = /usr/local
        comment = unpackaged software

[opt]
        path    = /opt
        comment = unpackaged software

[etc]
        path    = /etc
        comment = conf files

[var]
        path    = /var
        comment = user and system storage