Difference between revisions of "Project Bringing Sexy Back"

From the Linux and Unix Users Group at Virginia Teck Wiki
Jump to: navigation, search
imported>Pew
(Bare Metal)
imported>Pew
(Service Importance)
Line 75: Line 75:
  
 
==== K8s ====
 
==== K8s ====
* sczi proxy (sczi)
+
* Sczi proxy (sczi)
 
** For proxying *.vtluug.org bc we don't have unlimited v4
 
** For proxying *.vtluug.org bc we don't have unlimited v4
 
* vtluug.org (vtluug.org)
 
* vtluug.org (vtluug.org)
Line 90: Line 90:
  
 
==== VMs ====
 
==== VMs ====
* shell (acidburn)
+
* Shell (acidburn)
* syslog (theplague)
+
** Member pages @ vtluug.org/~user
 +
* rsyslog (theplague)
 
** Need to research this a bunch
 
** Need to research this a bunch
* dns (lordnikon)
+
* DNS (lordnikon)
 
** Need to research this a bunch
 
** Need to research this a bunch
* mail (acidburn)
+
* Mail (acidburn)
 
** Possibly in Docker??? TODO
 
** Possibly in Docker??? TODO
 +
 
==== K8s ====
 
==== K8s ====
 
* Wadsworth (wadsworth)
 
* Wadsworth (wadsworth)
Line 102: Line 104:
 
* truncatedcone (truncatedcone)
 
* truncatedcone (truncatedcone)
 
* multimediamanv2 (multimediaman)
 
* multimediamanv2 (multimediaman)
** produces /files/irc-vtluug.org
+
** Produces /files/irc-vtluug.org
  
  
Line 112: Line 114:
 
** How tf do these things work
 
** How tf do these things work
 
* wargame.vtluug.org (wargame)
 
* wargame.vtluug.org (wargame)
* archive team warrior
+
* Archive Team Warrior
  
 
==== K8s ====
 
==== K8s ====
Line 128: Line 130:
 
* finger (kerberos)
 
* finger (kerberos)
 
* talkd
 
* talkd
* member web pages in vtluug.org/~username
 
  
 
== Issues with current services ==
 
== Issues with current services ==

Revision as of 10:04, 27 December 2017

This is an effort toward the end of Fall 2017 to get new hardware, determining if we can use old hardware for anything, bring many vtluug services back to life plus add new services, fix major problems relating to the current infrastructure, make managing the current infrastructure easier, and to provide enough documentation so that anybody can have a very good understanding of how everything works without having to ask the officers about every little thing. This will be summarized in the Sysadmin Handbook

One major change is running an oVirt cluster to managing everything, along with offering a VPS service in addition to shell accounts on Acidburn. This is not possible with the current hardware.


T-shirts


Getting new hardware

Cyberdelia is the only connected physical machine right now, besides our router. See Infrastructure 2017. We are planning to request funding from the SBB for new infrastructure as early as possible Spring 2018.

We are still working on exactly what to ask for, but here are some desirable things: //TODO link items

Priority Item Estimated Cost
10 Dell Poweredge R620s $600 ish

Ideally we will get 2.

A much more detailed price analysis will be done for the SBB.

Hardware Configuration

Hardware we will definitely have:

Assuming we do get SBB funding

Additional hardware: 2x R620

  • Router: temp88191
  • NAS: Cyberdelia due to its HDD capacity
  • oVirt Controller: R620
  • oVirt Workers (via PXE): R620 Controller, the other R620, Phantomphreak, Joey
  • HPC: Wood due to its 4U height that can easily fit gpus

If we don't get SBB funding

We probably need to get some additional RAM & CPUs for Wood in this case in order to do the cluster.

  • Router: temp88191
  • NAS: Cyberdelia
  • oVirt Controller: Wood
  • oVirt Workers (via PXE): Wood, Phantomphreak, Joey


We may also get some additional hardware early Spring 2017. This will replace Phantomphreak/Joey, become the oVirt Controller, or the NAS depending on its specs. TBD

Diagrams in progress


Service Importance

Note: This secion's PoV does not taking into account the current state of service. Instead, it assumes services are being installed to a new infrastructure.

All necessary services send notifications to officers for alerts.

Syntax:

  • Service (VM name | Container name)

Urgent

Bare Metal

  • Monitoring (crashandburn)
    • Nagios or Prometheus (or both?)

VMs

  • FreeIPA (zerocool)

K8s

  • Sczi proxy (sczi)
    • For proxying *.vtluug.org bc we don't have unlimited v4
  • vtluug.org (vtluug.org)
  • wiki.vtluug.org, gobblerpedia.org (wiki)
    • pSQL (should pSQL be in separate container??? TODO)
  • hokieprivacy.org (hokieprivacy)

Very Important

Bare Metal

  • VPS system (crashandburn)
    • Somewhat automated system where a user is given a VM
    • Possibly is really easy with oVirt
    • Possibly do something like <user>.users.vtluug.org

VMs

  • Shell (acidburn)
    • Member pages @ vtluug.org/~user
  • rsyslog (theplague)
    • Need to research this a bunch
  • DNS (lordnikon)
    • Need to research this a bunch
  • Mail (acidburn)
    • Possibly in Docker??? TODO

K8s

  • Wadsworth (wadsworth)
  • duckhunter9000 (duckhunter)
  • truncatedcone (truncatedcone)
  • multimediamanv2 (multimediaman)
    • Produces /files/irc-vtluug.org


Important

VMs

  • Tahoe-LAFS (crashoverride)
    • Possibly put in container
  • telnet BBS
    • How tf do these things work
  • wargame.vtluug.org (wargame)
  • Archive Team Warrior

K8s

  • linx.vtlug.org (linx)
  • bash.vtluug.org (bash)
  • foodfor.vtluug.org (foorfor)
    • .pickfood, .foodvote
  • emby.vtluug.org (emby)
  • mirror.vtluug.org (mirror)
  • map.vtluug.org (map)
  • jitsi.vtluug.org (jitsi)

Other things to consider

  • diaspora*
  • finger (kerberos)
  • talkd

Issues with current services

When (re)implementing services listed above do the following changes.

VTLUUG Site

  • THIS IS SHIT
  • We're literally proxying a static github page (vtluug.github.io)
  • we killed off all the dynamic pump.io and identi.ca features that used to exist; we should bring these back or at least make the site not shit

gopherspace

  • server doesn't support IPv6
  • need to actually use /files on it

hokieprivacy

out of date

linx

someone needs to update binary

TOR services

linx, hokieprivacy, and the main site (hence vtluug.org) can be accessed over tor. advertise these urls or make them more memorable (or both)

vtluug.org/files

  • need easier way for non-root to add stuff here???

ldap

ldap sucks and needs to die. this is also a cent6 box

mail

  • train spamassassin against a corpus of spam so it filters better
  • sieve doesn't seem to work at all; fix that

Most services (LDAP, others)

  • Need standard place to put script for organization on physical server (aside from a git repo)
    • Wadsworth contains debian SysV init scripts in the ircbot homedir
    • VTBash contains scripts in pew's homedir (which echarlie moved to a sane place)
    • router configs are on github, as are old ldap configs and triggered in rc.local

VTLUUG wiki

  • Need meeting script
  • Some meetings weren't added to category (fixed??)
  • Lots of out of date information---should purge or at least clean up
  • can't delete pages
  • Templates?

Gobblerpedia

  • Lots of out of date information
  • Need templates for buildings---currently using bloated wikipedia scripts that don't reflect our needs
  • automagically add data scraped from webpages to gobblerpedia
  • can't delete pages

VTBash

  • bash.vtluug.org is working as of August 2017
  • An issue with the code resulted in 2 different databases, ea=ch of which is very large and good
    • We need to convert these sqlite dbs
  • Needs overhaul
    • Shittly ported to python 3 from python 2
    • word wrap doesn't happen (feature or bug???)