Einstein Status

From Nuclear Physics Group Documentation Pages
Revision as of 21:26, 21 December 2007 by Maurik (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search

Status for Einstein

Massive amount of deployment documentation for RHEL 5

Remade the RAID5. Will redo the software, but if the RAID dies again we should think of a different machine to sub for einstein.

  1. Pick a date within the next week Monday, 7/23/2007
  2. Send an e-mail to Aaron, warning him of the future takedown of tomato Done
  3. Update Tomato to RHEL5 Installed w/ basic configuration (auth, autofs, etc)
  4. Check all services einstein currently provides. Locate as many custom scripts, etc. as is reasonable and label/copy them.
    1. DNS Installed, set up, working
    2. LDAP Installed, set up, working. Changed config files on tomato and einstein to do replication, but their LDAP services need restarted. Need to schedule a time to do it on einstein. Double-check configs!
    3. Postfix Installed, set up, working!
    4. AMaViS Installed, set up
    5. ClamAV Installed, set up
    6. SpamAssassin Installed, set up, working? (need to test to make sure)
    7. IMAP cyradm localhost gives "cannot connect to server". This all seems to be sasl-related. It'd be probably be easy if there was a way to have cyrus use PAM. LDAP and sasl Nevermind, that has to do with using SASL to authenticate LDAPsaslauthd -v lists pam and ldap as available authentication mechanisms, and /etc/sysconfig/saslauthd has an entry "MECH=pam"…! What am I missing? Tried making a new "mail.physics.unh.edu.crt" for tomato, but couldn't because that would have required revoking einstein's cert of the same name. Tried using the "tomato.unh.edu.crt" and "tomato.unh.edu.key", but is giving the same results as the "mail.physics.unh.edu.*" copied from einstein. Tried using tomato's UNH address instead of hostname: same result. I'm able to login using the imtest program, but the server doesn't send the same messages as shown here. Let's try Dovecot instead. It supposed to be simpler to maintain and is supported by RedHat.
    8. /home Installed, set up, working
    9. Samba Installed, set up, working. If anyone needs samba access, they need to find us and have us make them a samba account. No LDAP integration.
    10. Web?
    11. Fortran compilers and things like that? (Also needs compat libs--Nope, tomato is 32-bit.)
  5. Clone those services to tomato
  6. Switch einstein <-> tomato, and then upgrade what was originally einstein
  7. Look into making an einstein, tomato failsafe setup.