CURRENT SERVICES
[1]General authentication/configuration data
[2]email
receive for:
angelar.com
htclug.org
shatner.boldlygoingnowhere.org
class.multitool.net
mail.angelar.com
smtp.angelar.com
forward for:
192.168.1.x
localhost
all other relaying denied
*email for angelar@shatner.boldlygoingnowhere.org MUST BE ACCEPTED
[3]firewall
[4]samba server
[5]NFS server
[6]CVS server
[7]SSH server
[8]webserver for:
www.htclug.org[9][13]
angelar.com
linux.angelar.com
www.angelar.com
[9]mysql server
[10]majordomo mailing list server
[11]bestcrypt
[12]dhcp server
[13]PHP
[14]awstats
[15]POP3s
[16]Miscellaneous commandline utilities
FILES WHICH MUST BE SAVED:
- general
- /etc/passwd
- /etc/shadow
- /etc/group
- /etc/profile
- /etc/profile.d
- /home
- /var/log
- /root
- /var/spool/cron
- mail
- see item [1]
- /etc/mail
- /etc/aliases
- /etc/aliases.majordomo
- /var/log/mail
- /var/spool/mail
- firewall
- /etc/rc.d/init.d/rc.firewall
- /etc/sysconfig
- eth1=eepro100
- eth0=lite-on tulip
- samba
- nfs
- see item [1]
- /etc/exports
- cvs
- ssh
- httpd
- /usr/local/apache2/
- /etc/rc.d/init.d/httpd
- symbolic link from /var/log/httpd to /usr/local/apache2/logs
- /etc/rc.d/rc5.d/S85httpd
- mysql
- see item [1]
- /var/lib/mysql
- majordomo
- /home/majordomo (includes all necessary binaries)
- /etc/majordomo.aliases
- bestcrypt
- need bestcrypt code. in ~jeremy
- dhcp server
- PHP
- /usr/local/lib/php
- /usr/local/lib/php.ini
- /usr/local/apache2/modules/libphp4.so
- awstats
- /etc/opt/awstats
- /var/cache/awstats
- POP3s
- /etc/xinetd.d/pop3s
- /etc/ssl
- Command line utilities
- /home/jeremy/noarch does NOT need to be saved, provided all CVS changes are checked in.
- /etc does not change often, so can be backedup before hand. Size is small, so can be soft-backedup to thor.
- /var cannot be backed up while cable modem is active.
FILESYSTEM MAP
Filesystem Size Used Avail Use% Mounted on
/dev/hda5 92M 77M 9.8M 89% /
/dev/hda6 51G 20G 32G 39% /home
/dev/hdb6 9.0G 533M 8.0G 7% /sandbox
/dev/hda9 122M 105K 116M 1% /tmp
/dev/hdb1 796M 8.0K 755M 1% /tmp2
/dev/hda8 3.1G 1.7G 1.3G 58% /usr
/dev/hda7 981M 184M 748M 20% /var
PLAN
- Create shell script to make tar archive of all FILES WHICH MUST BE SAVED. Test before outage window
- deactivate cable modem.
- label NICs and cables.
- drop mysql, apache, sendmail, other services
- backup FILES WHICH MUST BE SAVED to a file on machine THOR
- powerdown
- make hardware changes:
- install new CDRW
- remove LS120
- install auxiliary harddrive on /dev/hdb
- install new OS
- boot
- ensure that following services start at boot:
- spamd
- httpd
- sendmail
- nfsd
- portmap
- sshd
- dhcpd
- mysqld
- smbd
- nmbd
- xinetd
- initiate test plan:
manual for this run, yes I know that sucks.
- test emails to:
- list of emails deleted to try to impede spam
- telnet to port 25 from a remote machine and attempt relaying, to ensure that it is denied
- test websites:
- www.htclug.org
- www.angelar.com
- linux.angelar.com
- connect laptop to network, and verify that it can DHCP an address
- ensure that directories can be nfs mounted.
- ensure that cvs stuff can be checked out.
- verify that Angela's machine can retrieve mail via POP3s
- ensure that same passwords work!
- activate cable modem
- bring external NIC online
- run firewall script
- ensure NAT works for internal workstations
- test websites from external machine
- ensure that firewall script will run at boot time
- ssh login to firewall from machine on internet
- Email announcement to users that upgrade is complete, and let them know to notify me immediately if they find anything amiss
- continue documenting problems with upgrade for next few weeks, to be incorporated into new, improved plan
NEXT
BACK