summaryrefslogtreecommitdiff
path: root/doc/george/changelog
blob: 12586a90ee53e9e1ae16457f4506bb24893358b6 (plain) 
    

  1. ******************************************************************************
    2. 

  2. *                                                                            *
    3. 

  3. *                   george system log                            *
    4. 

  4. *                                                                            *
    5. 

  5. ******************************************************************************
    6. 

  6. *  Please add new entries in reverse chronological order whenever you make   *
    7. 

  7. *  changes to this system (first command at top, last at bottom)             *
    8. 

  8. ******************************************************************************
    9. 

  9. 

  10. 2009-10-26 - dkg
    11. 

  11.     * upgrade nginx in response to DSA-1920-1
    12. 

  12.     
    13. 

  13. 2009-09-14 - dkg
    14. 

  14.     * aptitude update && aptitude full-upgrade (bunch of lenny
    15. 

  15.     updates, plus ikiwiki security upgrade)
    16. 

  16.     
    17. 

  17. 2009-04-21 - jrollins
    18. 

  18.     * apt-get update && dist-upgrade (a bunch of stuff (monkeysphere,
    19. 

  19.     screen, gnupg, dash, onak, git-core...)
    20. 

  20.     * extended host key by 3 months
    21. 

  21.     
    22. 

  22. 2009-04-21 - micah
    23. 

  23.     * aptitude update && aptitude full-upgrade (git-core DSA)
    24. 

  24.     
    25. 

  25. 2009-04-12 - dkg
    26. 

  26.     * aptitude update && aptitude full-upgrade
    27. 

  27.     * (checked and found that monkeysphere version 0.24-1 is already
    28. 

  28.     installed; don't know how that happened, coulda been me, just
    29. 

  29.     sloppy about not noting it in the changelog)
    30. 

  30.     * extended host key by 4 months
    31. 

  31.     
    32. 

  32. 2009-02-22 - jrollins
    33. 

  33.     * fixed /etc/crontab line for update-users (was trying to run
    34. 

  34.     monkeysphere-server instead of monkeysphere-authentication).
    35. 

  35. 

  36. 2009-02-21 - dkg
    37. 

  37.     * upgraded to the latest versions of packages for lenny.
    38. 

  38.     * upgraded george to monkeysphere 0.23.1.  the transition upgrade
    39. 

  39.     failed due to the way that gpg exports self-signatures secret
    40. 

  40.     keys; it only exports the first self-sig for each user id, even if
    41. 

  41.     that one is expired.  Then any subsequent import fails, even if
    42. 

  42.     the target import keyring knows about some valid self-signatures.
    43. 

  43.     * i man-handled the upgrade into place so that george doesn't just
    44. 

  44.     fail on us, but this is a pretty major bug in the transition process.
    45. 

  45.     
    46. 

  46. 2009-01-31 - jrollins
    47. 

  47.     * applied diff represented in commit
    48. 

  48.     f75a5747a8b99e04c02c475791c476f1fbd2b674 to change log level for
    49. 

  49.     unacceptable untranslatable keys.
    50. 

  50. 

  51. 2009-01-30 - micah
    52. 

  52.     * Replaced nullmailer with postfix, nullmailer doesn't handle aliases
    53. 

  53.       and insisted either on constantly respooling mail when there was no
    54. 

  54.       where to go. 
    55. 

  55. 

  56. 2009-01-24 - micah
    57. 

  57.     * Configured /etc/aliases to have root go to mjgoins, micah, dkg, jrollins
    58. 

  58.     * Configured /etc/nullmailer/remotes to have mail.riseup.net so remote delivery will work
    59. 

  59.     * Removed the hundreds of queued cron emails that had resulted in 30gig of mail.err logs
    60. 

  60.     * Rotated the giant logs out 
    61. 

  61. 

  62. 2009-01-11 - dkg
    63. 

  63.     * extended the expiration date for george's key three months into
    64. 

  64.     the future.
    65. 

  65.     * aptitude update && aptitude full-upgrade (brings monkeysphere to
    66. 

  66.     0.22-1)
    67. 

  67.     
    68. 

  68. 2008-10-29 - dkg
    69. 

  69.     * aptitude update && aptitude full-upgrade
    70. 

  70.     * brought monkeysphere up to 0.19-1
    71. 

  71.     * removed tasksel
    72. 

  72.     
    73. 

  73. 2008-10-25 - dkg
    74. 

  74.     * aptitude update && aptitude full-upgrade
    75. 

  75.     * brought monkeysphere up to 0.16-1
    76. 

  76.     * repointed keyserver usage to pool.sks-keyservers.net
    77. 

  77.     
    78. 

  78. 2008-09-04 - dkg
    79. 

  79.     * added two mime-type declarations in /etc/mathopd.conf so .debs
    80. 

  80.       and .tar.gz files come out reasonably; restarted mathopd for the
    81. 

  81.       re-read.
    82. 

  82.     * built monkeyshell (from src/monkeyshell) and installed as
    83. 

  83.       /usr/local/bin/monkeyshell, added to /etc/shells.
    84. 

  84.     * created new account "monkey" which has monkeyshell as the shell
    85. 

  85.       for non-privileged test access.  To let someone test this out,
    86. 

  86.       make sure they're well-connected to george's web of trust, and
    87. 

  87.       then add their User ID to
    88. 

  88.       ~monkey/.monkeysphere/authorized_user_ids
    89. 

  89.     * more mime types for mathopd: image/png image/x-icon
    90. 

  90.     
    91. 

  91. 2008-09-03 - micah
    92. 

  92.     * migrated /home/*/.config/monkeysphere/authorized_user_ids to new
    93. 

  93.     agreed location: /home/*/.monkeysphere/authorized_user_ids and created
    94. 

  94.     a symlink in the original location for transition purposes. Also,
    95. 

  95.     did /root's as well. I used this hackish mechanism:
    96. 

  96.     $ for user in `find . -wholename './*/.config/monkeysphere/authorized_user_ids' \
    97. 

  97.     | cut -d/ -f2`; do mkdir -v ${user}/.monkeysphere; chown ${user}:${user} \
    98. 

  98.     ${user}/.monkeysphere; mv -v ${user}/.config/monkeysphere/authorized_user_ids \
    99. 

  99.     ${user}/.monkeysphere; ln -s /home/${user}/.monkeysphere/authorized_user_ids \
    100. 

  100.     ${user}/.config/monkeysphere/authorized_user_ids; done
    101. 

  101. 

  102.        - dkg
    103. 

  103.     * added the monkeysphere archive repository signing key
    104. 

  104.     * aptitude update && aptitude full-upgrade (brings in monkeysphere 0.13-1)
    105. 

  105.     * cleaned up /etc/skel to reflect correct location of the
    106. 

  106.       monkeysphere config directory.
    107. 

  107.     * micah moved all the existing config stuff over, and left
    108. 

  108.       symlinks so people aren't disoriented.
    109. 

  109.     
    110. 

  110. 2008-09-01 - dkg
    111. 

  111.     * set up http://dkg.monkeysphere.info so that i could play around
    112. 

  112.       with ikiwiki updates
    113. 

  113.     * moved apt repository over to http://archive.monkeysphere.info/
    114. 

  114.     * aptitude update && aptitude dist-upgrade
    115. 

  115.     * canonicalizing hostname for normal web access to
    116. 

  116.       http://web.monkeysphere.info
    117. 

  117.     
    118. 

  118. 2008-08-26 - dkg
    119. 

  119.     * aptitude update && aptitude full-upgrade
    120. 

  120.     * added account 'daniel' for Dan Scott, and set him up with a way
    121. 

  121.       to publish to http://daniel.monkeysphere.info
    122. 

  122.     
    123. 

  123. 2008-08-20 - dkg
    124. 

  124.     * aptitude update && aptitude dist-upgrade: this includes
    125. 

  125.       monkeysphere 0.11-1 and OpenSSH 5.1p1-2
    126. 

  126.     
    127. 

  127. 2008-08-18 - dkg
    128. 

  128.     * moved monkeysphere apt repo entry to
    129. 

  129.       /etc/apt/sources.list.d/monkeysphere.list
    130. 

  130.     * aptitude update && aptitude full-upgrade (including monkeysphere
    131. 

  131.       0.9-1)
    132. 

  132.     * switched george's monkeysphere-server preferred keyserver to
    133. 

  133.       monkeysphere.info for the moment.  Both pgp.mit.edu and
    134. 

  134.       subkeys.pgp.net are sluggish right now :/
    135. 

  135.     
    136. 

  136. 2008-08-16 - jrollins
    137. 

  137.     * removed stale branches from jrollins from the master repo
    138. 

  138.     * aptitude update && aptitude full-upgrade
    139. 

  139.     * restarted services to clear up dependencies on old libraries
    140. 

  140.     
    141. 

  141. 2008-08-13 - dkg
    142. 

  142.     * aptitude update && aptitude full-upgrade
    143. 

  143.     * restarted services to clear up dependencies on old libraries
    144. 

  144.     
    145. 

  145. 2008-08-07 - dkg
    146. 

  146.     * aptitude update && aptitude dist-upgrade
    147. 

  147.     * removed debian's experimental from the sources.list
    148. 

  148.     * removed experimental stanza from /etc/apt/preferences (now the
    149. 

  149.       monkeysphere packages should upgrade automatically)
    150. 

  150.     * upgraded to monkeysphere 0.7-1
    151. 

  151.     * installed runit
    152. 

  152.     * set up a public git daemon service to serve git repos from
    153. 

  153.       george, using runit. (root-served repos are served from
    154. 

  154.       /srv/git, but ~USER/public_git is supported as well, if anyone
    155. 

  155.       wants to use that for publication).
    156. 

  156.     
    157. 

  157. 2008-08-03 - dkg
    158. 

  158.     * aptitude update && aptitude dist-upgrade
    159. 

  159.     * installed iproute
    160. 

  160.     * added my User ID to ~webmaster/.config/monkeysphere/authorized_user_ids
    161. 

  161. 

  162. 2008-08-02 - jrollins
    163. 

  163.     * aptitude update && aptitude dist-upgrade
    164. 

  164.     * restarted cron, nullmailer, sshd
    165. 

  165.     * aptitude install git-core ikiwiki
    166. 

  166.     * adduser webmaster
    167. 

  167.     * su - webmaster
    168. 

  168.     * created a bare repo at ~webmaster/monkeysphere.git.  I then
    169. 

  169.     pushed into this repo from my working directory on servo to verify
    170. 

  170.     that it was accepting.
    171. 

  171.     * cloned above repo at ~webmaster/monkeysphere
    172. 

  172.     * created ~webmaster/ikiwiki.setup
    173. 

  173.     * ikiwiki --setup ikiwiki.setup
    174. 

  174.     * linked post-receive to new post-commit hook in monkeysphere.git
    175. 

  175.     * changed default keyserver to be pgp.mit.edu (subkeys.pgp.net
    176. 

  176.     blows)
    177. 

  177.     * updated /etc/skel with ssh and monkeysphere stuff
    178. 

  178.     * made authorzied_user_ids file for webmaster and ran
    179. 

  179.     "monkeysphere-server u webmaster".
    180. 

  180.     
    181. 

  181. 2008-06-23 - dkg
    182. 

  182.     * added monkeysphere apt repository to /etc/apt/sources.list
    183. 

  183.     * added dkg's key to apt's list of trusted keys.
    184. 

  184.     * ran aptitude dist-upgrade
    185. 

  185.     * upgraded to monkeysphere 0.2-1
    186. 

  186.     * moved authorized_user_ids files into users' home directories.
    187. 

  187.     * installed lockfile-progs
    188. 

  188.     
    189. 

  189. 2008-06-22 - dkg
    190. 

  190.     * installed screen (mjgoins and i were collaborating)
    191. 

  191.     
    192. 

  192. 2008-06-21 - micah
    193. 

  193.     * Restored /etc/init.d/ssh to original package state and changed
    194. 

  194.     /etc/default/ssh to have 'unset SSHD_OOM_ADJUST' instead.
    195. 

  195.     
    196. 

  196. 2008-06-20 - micah
    197. 

  197.     * Commented out the 'export SSHD_OOM_ADJUST=-17' from the
    198. 

  198.     /etc/init.d/ssh initscript, and the 'SSHD_OOM_ADJUST=-17' from
    199. 

  199.     /etc/default/ssh in order to make this error go away:
    200. 

  200.     "error writing /proc/self/oom_adj: Operation not permitted"
    201. 

  201.     (c.f. Debian #487325)
    202. 

  202.     
    203. 

  203. 2008-06-20 - dkg
    204. 

  204.     * touched /etc/environment to get rid of some spurious auth.log
    205. 

  205.     entries.
    206. 

  206.     * turned up sshd's LogLevel from INFO to DEBUG
    207. 

  207.     
    208. 

  208. 2008-06-19 - dkg
    209. 

  209.     * installed rsync (for maintaining a public apt repo)
    210. 

  210.     
    211. 

  211.     * configured mathopd to listen on port 80, serving /srv/www as /
    212. 

  212.     and /srv/apt as /debian.  We've got nothing in /srv/www at the
    213. 

  213.     moment, though.
    214. 

  214. 

  215.     * installed lsof and psmisc as sysadmin utilities.  sorry for the
    216. 

  216.     bloat!
    217. 

  217. 

  218.     * installed strace to try to figure out why onak is segfaulting.
    219. 

  219.     
    220. 

  220. 2008-06-19 - dkg
    221. 

  221.     * removed etch sources, switched "testing" to "lenny", added
    222. 

  222.     lenny/updates, removed all contrib and non-free.
    223. 

  223.     
    224. 

  224.     * removed testing pin in /etc/apt/preferences
    225. 

  225.     * ran the upgrade
    226. 

  226.     
    227. 

  227.     * reset emacs22 to emacs22-nox (avoiding dependencies)
    228. 

  228.     
    229. 

  229.     * removed sysklog and klogd because of errors restarting klogd.
    230. 

  230.     Installed syslog-ng in their stead, which still gives errors
    231. 

  231.     related to /proc/kmsg unreadability, but the install completes :/
    232. 

  232.     
    233. 

  233.     * added experimental
    234. 

  234.     * juggled pinning: experimental: 1, unstable: 2 
    235. 

  235.     * added mathopd onak, tweaked /etc/mathopd.conf and /etc/onak.conf
    236. 

  236.     
    237. 

  237.     * installed monkeysphere v0.1-1, changed host key, published
    238. 

  238.     them via the local keyserver (see host-key-publication)
    239. 

  239. 

  240.     * added local unprivileged user accounts for everyone listed in
    241. 

  241.     /usr/share/doc/monkeysphere/copyright
    242. 

  242. 

  243.     * configured authorized_user_ids for every user account based on
    244. 

  244.     my best guess at their OpenPGP User ID (see
    245. 

  245.     user-id-configuration).
    246. 

  246. 

  247.     * set up a cronjob (in /etc/crontab) to run "monkeysphere-server
    248. 

  248.     update-users" at 26 minutes past the hour.
    249. 

  249.     
    250. 

  250. 2008-06-18 - jrollins
    251. 

  251.     * installed less, emacs;
    252. 

  252.     * aptitude update && aptitude dist-upgrade
    253. 

  253. 

  254. 2008-06-18 - micah
    255. 

  255.     * debootstrap'd debian etch install
    256. 

  256.     * installed /etc/apt/sources.list with local proxy sources for etch,
    257. 

  257.       testing, unstable, backports and volatile
    258. 

  258.     * configured /etc/apt/preferences and apt.conf.d/local-conf to
    259. 

  259.       pin etch, but make testing, sid and backports available
    260. 

  260.     * added backports.org apt-key
    261. 

  261.     * installed openssh-server and openssh-client packages
    262. 

  262.     * added dkg, jrollins, mjgoins ssh public_keys to /root/.ssh/authorized_keys
    263.
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-28 06:49:21 +0000