summaryrefslogtreecommitdiff
path: root/doc/george/changelog
blob: a56e3219573041df51d9b9dd7ab0fe3fb29922a3 (plain)
  1. ******************************************************************************
  2. *                                                                            *
  3. * george system log *
  4. * *
  5. ******************************************************************************
  6. * Please add new entries in reverse chronological order whenever you make *
  7. * changes to this system (first command at top, last at bottom) *
  8. ******************************************************************************
  9. 2010-01-12 - dkg
  10. * aptitude update && aptitude full-upgrade (including monkeysphere
  11. 0.27-1)
  12. 2009-10-26 - dkg
  13. * upgrade nginx in response to DSA-1920-1
  14. 2009-09-14 - dkg
  15. * aptitude update && aptitude full-upgrade (bunch of lenny
  16. updates, plus ikiwiki security upgrade)
  17. 2009-04-21 - jrollins
  18. * apt-get update && dist-upgrade (a bunch of stuff (monkeysphere,
  19. screen, gnupg, dash, onak, git-core...)
  20. * extended host key by 3 months
  21. 2009-04-21 - micah
  22. * aptitude update && aptitude full-upgrade (git-core DSA)
  23. 2009-04-12 - dkg
  24. * aptitude update && aptitude full-upgrade
  25. * (checked and found that monkeysphere version 0.24-1 is already
  26. installed; don't know how that happened, coulda been me, just
  27. sloppy about not noting it in the changelog)
  28. * extended host key by 4 months
  29. 2009-02-22 - jrollins
  30. * fixed /etc/crontab line for update-users (was trying to run
  31. monkeysphere-server instead of monkeysphere-authentication).
  32. 2009-02-21 - dkg
  33. * upgraded to the latest versions of packages for lenny.
  34. * upgraded george to monkeysphere 0.23.1. the transition upgrade
  35. failed due to the way that gpg exports self-signatures secret
  36. keys; it only exports the first self-sig for each user id, even if
  37. that one is expired. Then any subsequent import fails, even if
  38. the target import keyring knows about some valid self-signatures.
  39. * i man-handled the upgrade into place so that george doesn't just
  40. fail on us, but this is a pretty major bug in the transition process.
  41. 2009-01-31 - jrollins
  42. * applied diff represented in commit
  43. f75a5747a8b99e04c02c475791c476f1fbd2b674 to change log level for
  44. unacceptable untranslatable keys.
  45. 2009-01-30 - micah
  46. * Replaced nullmailer with postfix, nullmailer doesn't handle aliases
  47. and insisted either on constantly respooling mail when there was no
  48. where to go.
  49. 2009-01-24 - micah
  50. * Configured /etc/aliases to have root go to mjgoins, micah, dkg, jrollins
  51. * Configured /etc/nullmailer/remotes to have mail.riseup.net so remote delivery will work
  52. * Removed the hundreds of queued cron emails that had resulted in 30gig of mail.err logs
  53. * Rotated the giant logs out
  54. 2009-01-11 - dkg
  55. * extended the expiration date for george's key three months into
  56. the future.
  57. * aptitude update && aptitude full-upgrade (brings monkeysphere to
  58. 0.22-1)
  59. 2008-10-29 - dkg
  60. * aptitude update && aptitude full-upgrade
  61. * brought monkeysphere up to 0.19-1
  62. * removed tasksel
  63. 2008-10-25 - dkg
  64. * aptitude update && aptitude full-upgrade
  65. * brought monkeysphere up to 0.16-1
  66. * repointed keyserver usage to pool.sks-keyservers.net
  67. 2008-09-04 - dkg
  68. * added two mime-type declarations in /etc/mathopd.conf so .debs
  69. and .tar.gz files come out reasonably; restarted mathopd for the
  70. re-read.
  71. * built monkeyshell (from src/monkeyshell) and installed as
  72. /usr/local/bin/monkeyshell, added to /etc/shells.
  73. * created new account "monkey" which has monkeyshell as the shell
  74. for non-privileged test access. To let someone test this out,
  75. make sure they're well-connected to george's web of trust, and
  76. then add their User ID to
  77. ~monkey/.monkeysphere/authorized_user_ids
  78. * more mime types for mathopd: image/png image/x-icon
  79. 2008-09-03 - micah
  80. * migrated /home/*/.config/monkeysphere/authorized_user_ids to new
  81. agreed location: /home/*/.monkeysphere/authorized_user_ids and created
  82. a symlink in the original location for transition purposes. Also,
  83. did /root's as well. I used this hackish mechanism:
  84. $ for user in `find . -wholename './*/.config/monkeysphere/authorized_user_ids' \
  85. | cut -d/ -f2`; do mkdir -v ${user}/.monkeysphere; chown ${user}:${user} \
  86. ${user}/.monkeysphere; mv -v ${user}/.config/monkeysphere/authorized_user_ids \
  87. ${user}/.monkeysphere; ln -s /home/${user}/.monkeysphere/authorized_user_ids \
  88. ${user}/.config/monkeysphere/authorized_user_ids; done
  89. - dkg
  90. * added the monkeysphere archive repository signing key
  91. * aptitude update && aptitude full-upgrade (brings in monkeysphere 0.13-1)
  92. * cleaned up /etc/skel to reflect correct location of the
  93. monkeysphere config directory.
  94. * micah moved all the existing config stuff over, and left
  95. symlinks so people aren't disoriented.
  96. 2008-09-01 - dkg
  97. * set up http://dkg.monkeysphere.info so that i could play around
  98. with ikiwiki updates
  99. * moved apt repository over to http://archive.monkeysphere.info/
  100. * aptitude update && aptitude dist-upgrade
  101. * canonicalizing hostname for normal web access to
  102. http://web.monkeysphere.info
  103. 2008-08-26 - dkg
  104. * aptitude update && aptitude full-upgrade
  105. * added account 'daniel' for Dan Scott, and set him up with a way
  106. to publish to http://daniel.monkeysphere.info
  107. 2008-08-20 - dkg
  108. * aptitude update && aptitude dist-upgrade: this includes
  109. monkeysphere 0.11-1 and OpenSSH 5.1p1-2
  110. 2008-08-18 - dkg
  111. * moved monkeysphere apt repo entry to
  112. /etc/apt/sources.list.d/monkeysphere.list
  113. * aptitude update && aptitude full-upgrade (including monkeysphere
  114. 0.9-1)
  115. * switched george's monkeysphere-server preferred keyserver to
  116. monkeysphere.info for the moment. Both pgp.mit.edu and
  117. subkeys.pgp.net are sluggish right now :/
  118. 2008-08-16 - jrollins
  119. * removed stale branches from jrollins from the master repo
  120. * aptitude update && aptitude full-upgrade
  121. * restarted services to clear up dependencies on old libraries
  122. 2008-08-13 - dkg
  123. * aptitude update && aptitude full-upgrade
  124. * restarted services to clear up dependencies on old libraries
  125. 2008-08-07 - dkg
  126. * aptitude update && aptitude dist-upgrade
  127. * removed debian's experimental from the sources.list
  128. * removed experimental stanza from /etc/apt/preferences (now the
  129. monkeysphere packages should upgrade automatically)
  130. * upgraded to monkeysphere 0.7-1
  131. * installed runit
  132. * set up a public git daemon service to serve git repos from
  133. george, using runit. (root-served repos are served from
  134. /srv/git, but ~USER/public_git is supported as well, if anyone
  135. wants to use that for publication).
  136. 2008-08-03 - dkg
  137. * aptitude update && aptitude dist-upgrade
  138. * installed iproute
  139. * added my User ID to ~webmaster/.config/monkeysphere/authorized_user_ids
  140. 2008-08-02 - jrollins
  141. * aptitude update && aptitude dist-upgrade
  142. * restarted cron, nullmailer, sshd
  143. * aptitude install git-core ikiwiki
  144. * adduser webmaster
  145. * su - webmaster
  146. * created a bare repo at ~webmaster/monkeysphere.git. I then
  147. pushed into this repo from my working directory on servo to verify
  148. that it was accepting.
  149. * cloned above repo at ~webmaster/monkeysphere
  150. * created ~webmaster/ikiwiki.setup
  151. * ikiwiki --setup ikiwiki.setup
  152. * linked post-receive to new post-commit hook in monkeysphere.git
  153. * changed default keyserver to be pgp.mit.edu (subkeys.pgp.net
  154. blows)
  155. * updated /etc/skel with ssh and monkeysphere stuff
  156. * made authorzied_user_ids file for webmaster and ran
  157. "monkeysphere-server u webmaster".
  158. 2008-06-23 - dkg
  159. * added monkeysphere apt repository to /etc/apt/sources.list
  160. * added dkg's key to apt's list of trusted keys.
  161. * ran aptitude dist-upgrade
  162. * upgraded to monkeysphere 0.2-1
  163. * moved authorized_user_ids files into users' home directories.
  164. * installed lockfile-progs
  165. 2008-06-22 - dkg
  166. * installed screen (mjgoins and i were collaborating)
  167. 2008-06-21 - micah
  168. * Restored /etc/init.d/ssh to original package state and changed
  169. /etc/default/ssh to have 'unset SSHD_OOM_ADJUST' instead.
  170. 2008-06-20 - micah
  171. * Commented out the 'export SSHD_OOM_ADJUST=-17' from the
  172. /etc/init.d/ssh initscript, and the 'SSHD_OOM_ADJUST=-17' from
  173. /etc/default/ssh in order to make this error go away:
  174. "error writing /proc/self/oom_adj: Operation not permitted"
  175. (c.f. Debian #487325)
  176. 2008-06-20 - dkg
  177. * touched /etc/environment to get rid of some spurious auth.log
  178. entries.
  179. * turned up sshd's LogLevel from INFO to DEBUG
  180. 2008-06-19 - dkg
  181. * installed rsync (for maintaining a public apt repo)
  182. * configured mathopd to listen on port 80, serving /srv/www as /
  183. and /srv/apt as /debian. We've got nothing in /srv/www at the
  184. moment, though.
  185. * installed lsof and psmisc as sysadmin utilities. sorry for the
  186. bloat!
  187. * installed strace to try to figure out why onak is segfaulting.
  188. 2008-06-19 - dkg
  189. * removed etch sources, switched "testing" to "lenny", added
  190. lenny/updates, removed all contrib and non-free.
  191. * removed testing pin in /etc/apt/preferences
  192. * ran the upgrade
  193. * reset emacs22 to emacs22-nox (avoiding dependencies)
  194. * removed sysklog and klogd because of errors restarting klogd.
  195. Installed syslog-ng in their stead, which still gives errors
  196. related to /proc/kmsg unreadability, but the install completes :/
  197. * added experimental
  198. * juggled pinning: experimental: 1, unstable: 2
  199. * added mathopd onak, tweaked /etc/mathopd.conf and /etc/onak.conf
  200. * installed monkeysphere v0.1-1, changed host key, published
  201. them via the local keyserver (see host-key-publication)
  202. * added local unprivileged user accounts for everyone listed in
  203. /usr/share/doc/monkeysphere/copyright
  204. * configured authorized_user_ids for every user account based on
  205. my best guess at their OpenPGP User ID (see
  206. user-id-configuration).
  207. * set up a cronjob (in /etc/crontab) to run "monkeysphere-server
  208. update-users" at 26 minutes past the hour.
  209. 2008-06-18 - jrollins
  210. * installed less, emacs;
  211. * aptitude update && aptitude dist-upgrade
  212. 2008-06-18 - micah
  213. * debootstrap'd debian etch install
  214. * installed /etc/apt/sources.list with local proxy sources for etch,
  215. testing, unstable, backports and volatile
  216. * configured /etc/apt/preferences and apt.conf.d/local-conf to
  217. pin etch, but make testing, sid and backports available
  218. * added backports.org apt-key
  219. * installed openssh-server and openssh-client packages
  220. * added dkg, jrollins, mjgoins ssh public_keys to /root/.ssh/authorized_keys