Main Page: Difference between revisions

Topics

• Install techdocs server
• AWS EFS home directories
• Policies - also refer to DNS for usage policy for the different DNS domains
• UNSW reserved network block for CSE AWS hosting
• Linux namespaces and cgroups
• Automounter
• Home directories - file system types - NFS, AFS, CephFS
• systemd-logind user session management and clean up
• Clean-up scripts on userlogin hosts
• QEMU/KVM
• Local storage
• cfengine - stripped down compared to how it is distributed, m4
• conform - nodeinfo
• DHCP
• Lab computer auto install
• hostlist.csv
• host classes
• update_hosts - host generators
• cfengine hub
• run-cf-agent
• check_and_install_promises
• /var/lib/cfengine3/masterfiles -> promises.cf
• /usr/local/warehouse
• /usr/local/administration
• Debian package management - installation, purging, auto update, CSG-managed lists, teaching-managed lists
• /usr/local/extrafiles
• /usr/local/extrapackages - installations triggered by list changes
• Monitoring - nagios, graphing, auto-configuration by update_hosts
• Email
• Old UDB
• New UDB
• bandleader
• maillard
• PostFix
• Printing
• Kerberos
• LDAP
• CSE network diagram
• AWS
• VPN to AWS
• podman
• AWS security groups and merge_ip_addresses_into_blocks
• pandoc
• MediaWiki documentation site management - MySQL DB, /home/mediawiki/images, /home/mwimages/
• Pages yet to be created

Page categories

• Pages needing work

Introduction

Sample image

For over twenty years the configuration of CSE's servers and lab computers has been managed by a home-grown product called conform. conform micromanaged the entire filesystem of each computer and handled the copying in of all configuration files, binaries, scripts, libraries, data files, etc, from a central repository called "the conformary" (and NFS server). conform is very powerful, but is also very labour intensive in regards to maintaining the conformary and the thousands of specification files which determine conform's actions. Also, being so old conform lacks many newer ideas such as pre- and post-install scripts. conform is part of the Old World.

The New World grew out a HoS-supported project to move as much CSE infrastructure as possible out of CSE's K17 data centre and into "the cloud", specifically Amazon's AWS. Early on, a decision was made that conform would be left behind and that all new servers and hosts set up in AWS would be managed some other way. This other way ended up being -- after a review of configuration management tools -- a split between cfengine and Debian's apt family of package manager utilities (apt, dpkg, apt-get, apt-file, etc.) In this split, apt handles all Debian package management (mainly installs and updates) and cfengine handles the rest, mostly configuration files.

Sample image #2

Debian was chosen because CSE's existing teaching platform was heavily based on Debian and the principle of least surprise was applied.

A bit more specifically, each New World host's filesystem is handled thusly:

The light-touch approach

There's a philosophy behind the way New World is set up. This is the "light touch approach" and goes like this:

Leave Debian-installed configurations and defaults alone unless there is an actual operational or functional need to be addressed.

Thus:

Debian package management (apt)

Configuration management (cfengine)

The cfengine hub.

Devolving teaching-related software and configuration to CSE's teaching staff

The split between CSG's and teaching's bailiwicks

Differences between conform and cfengine

MediaWiki installation leftovers

MediaWiki has been installed.

Consult the User's Guide for information on using the wiki software.

Getting started

• Configuration settings list
• MediaWiki FAQ
• MediaWiki release mailing list
• Localise MediaWiki for your language
• Learn how to combat spam on your wiki