summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--backup.mdwn0
-rw-r--r--firewall.mdwn0
-rw-r--r--firewire.mdwn0
-rw-r--r--index.mdwn13
-rw-r--r--install.mdwn0
-rw-r--r--keys.mdwn41
-rw-r--r--puppet.mdwn0
-rw-r--r--swap.mdwn0
-rw-r--r--vservers.mdwn0
9 files changed, 53 insertions, 1 deletions
diff --git a/backup.mdwn b/backup.mdwn
new file mode 100644
index 0000000..e69de29
--- /dev/null
+++ b/backup.mdwn
diff --git a/firewall.mdwn b/firewall.mdwn
new file mode 100644
index 0000000..e69de29
--- /dev/null
+++ b/firewall.mdwn
diff --git a/firewire.mdwn b/firewire.mdwn
new file mode 100644
index 0000000..e69de29
--- /dev/null
+++ b/firewire.mdwn
diff --git a/index.mdwn b/index.mdwn
index 242f2f4..4d9fe11 100644
--- a/index.mdwn
+++ b/index.mdwn
@@ -1,7 +1,7 @@
Padrão Saravá
=============
-Visite o [padrãoo antigo](trac/).
+Visite o [padrão antigo](trac/).
O Padrão Saravá é uma sistematização de configuração de servidores, gerenciadores de conteúdo e aplicações diversas usados pelo Grupo Saravá. O padrão foi desenvolvido para:
@@ -13,6 +13,17 @@ O Padrão Saravá é uma sistematização de configuração de servidores, gerenciadore
* Manter projetos e serviços isolados uns dos outros através de servidores virtuais.
* Tornar a instalação dos servidores facilmente replicável.
+# Conteúdo
+
+* [[install]](Instalação).
+* [[swap]](Swap).
+* [[firewire]](Firewire).
+* [[firewall]](Firewall).
+* [[vservers]](VServers).
+* [[puppet]](Puppet).
+* [[backup]](Backup].
+* [[keys]](Chaves).
+
# Licença
O Padrãoo Saravá é distribuído [conforme a [GNU Affero General Public License](http://www.gnu.org/licenses/agpl-3.0.html):
diff --git a/install.mdwn b/install.mdwn
new file mode 100644
index 0000000..e69de29
--- /dev/null
+++ b/install.mdwn
diff --git a/keys.mdwn b/keys.mdwn
new file mode 100644
index 0000000..6d4af2f
--- /dev/null
+++ b/keys.mdwn
@@ -0,0 +1,41 @@
+Repositório de chaves
+=====================
+
+ # Configuracao
+ project="exemplo"
+ domain="examplo.org"
+ admin="nodo_admin"
+ admin_port="porta_ssh"
+ base="$HOME/coletivos/$project/conf/puppet"
+
+ # Inicializando
+ keyringer $project init $HOME/coletivos/$project/conf/keyring
+
+ # Gerando chaves para https
+ keyringer $project genpair ssl cert $project.info
+
+ # Gerando chaves ssh e gpg para novos nodos
+ # A importacao das chaves gpg nos nodos deve ser feita manualmente
+ for class in `ls $base/manifests/nodes`; do
+ node="`basename $class .pp`"
+ privkey="$base/files/keys/"$node"_id_dsa"
+ pubkey="$privkey.pub"
+ if [ ! -e "$privkey" ] || [ ! -e "$pubkey" ]; then
+ keyringer $project genpair ssh $node/ssh/id_dsa $node.$domain $privkey
+ keyringer $project genpair gpg $node/gpg/key $node.$domain
+ fi
+ done
+
+ # Submetendo
+ keyringer $project git remote add origin ssh://gitosis@$admin.$domain:$admin_port/keyring.git
+ keyringer $project git push origin master
+
+Importação de chaves GPG
+------------------------
+
+Importando chaves nos seus respectivos nodos:
+
+ gpg --import # colar a chave privada
+ gpg --edit-key <id> # ajustar confiabilidade dessa chave para 5 com o comando "trust"
+ gpg --list-keys # atualizar o trust db
+
diff --git a/puppet.mdwn b/puppet.mdwn
new file mode 100644
index 0000000..e69de29
--- /dev/null
+++ b/puppet.mdwn
diff --git a/swap.mdwn b/swap.mdwn
new file mode 100644
index 0000000..e69de29
--- /dev/null
+++ b/swap.mdwn
diff --git a/vservers.mdwn b/vservers.mdwn
new file mode 100644
index 0000000..e69de29
--- /dev/null
+++ b/vservers.mdwn