From cf8f1ed757eca512817358d8262c84f7ec65ffb8 Mon Sep 17 00:00:00 2001 From: Silvio Rhatto Date: Tue, 2 Feb 2010 21:12:11 -0200 Subject: Adicionando estrutura inicial --- backup.mdwn | 0 firewall.mdwn | 0 firewire.mdwn | 0 index.mdwn | 13 ++++++++++++- install.mdwn | 0 keys.mdwn | 41 +++++++++++++++++++++++++++++++++++++++++ puppet.mdwn | 0 swap.mdwn | 0 vservers.mdwn | 0 9 files changed, 53 insertions(+), 1 deletion(-) create mode 100644 backup.mdwn create mode 100644 firewall.mdwn create mode 100644 firewire.mdwn create mode 100644 install.mdwn create mode 100644 keys.mdwn create mode 100644 puppet.mdwn create mode 100644 swap.mdwn create mode 100644 vservers.mdwn diff --git a/backup.mdwn b/backup.mdwn new file mode 100644 index 0000000..e69de29 diff --git a/firewall.mdwn b/firewall.mdwn new file mode 100644 index 0000000..e69de29 diff --git a/firewire.mdwn b/firewire.mdwn new file mode 100644 index 0000000..e69de29 diff --git a/index.mdwn b/index.mdwn index 242f2f4..4d9fe11 100644 --- a/index.mdwn +++ b/index.mdwn @@ -1,7 +1,7 @@ Padrão Saravá ============= -Visite o [padrãoo antigo](trac/). +Visite o [padrão antigo](trac/). O Padrão Saravá é uma sistematização de configuração de servidores, gerenciadores de conteúdo e aplicações diversas usados pelo Grupo Saravá. O padrão foi desenvolvido para: @@ -13,6 +13,17 @@ O Padr * Manter projetos e serviços isolados uns dos outros através de servidores virtuais. * Tornar a instalação dos servidores facilmente replicável. +# Conteúdo + +* [[install]](Instalação). +* [[swap]](Swap). +* [[firewire]](Firewire). +* [[firewall]](Firewall). +* [[vservers]](VServers). +* [[puppet]](Puppet). +* [[backup]](Backup]. +* [[keys]](Chaves). + # Licença O Padrãoo Saravá é distribuído [conforme a [GNU Affero General Public License](http://www.gnu.org/licenses/agpl-3.0.html): diff --git a/install.mdwn b/install.mdwn new file mode 100644 index 0000000..e69de29 diff --git a/keys.mdwn b/keys.mdwn new file mode 100644 index 0000000..6d4af2f --- /dev/null +++ b/keys.mdwn @@ -0,0 +1,41 @@ +Repositório de chaves +===================== + + # Configuracao + project="exemplo" + domain="examplo.org" + admin="nodo_admin" + admin_port="porta_ssh" + base="$HOME/coletivos/$project/conf/puppet" + + # Inicializando + keyringer $project init $HOME/coletivos/$project/conf/keyring + + # Gerando chaves para https + keyringer $project genpair ssl cert $project.info + + # Gerando chaves ssh e gpg para novos nodos + # A importacao das chaves gpg nos nodos deve ser feita manualmente + for class in `ls $base/manifests/nodes`; do + node="`basename $class .pp`" + privkey="$base/files/keys/"$node"_id_dsa" + pubkey="$privkey.pub" + if [ ! -e "$privkey" ] || [ ! -e "$pubkey" ]; then + keyringer $project genpair ssh $node/ssh/id_dsa $node.$domain $privkey + keyringer $project genpair gpg $node/gpg/key $node.$domain + fi + done + + # Submetendo + keyringer $project git remote add origin ssh://gitosis@$admin.$domain:$admin_port/keyring.git + keyringer $project git push origin master + +Importação de chaves GPG +------------------------ + +Importando chaves nos seus respectivos nodos: + + gpg --import # colar a chave privada + gpg --edit-key # ajustar confiabilidade dessa chave para 5 com o comando "trust" + gpg --list-keys # atualizar o trust db + diff --git a/puppet.mdwn b/puppet.mdwn new file mode 100644 index 0000000..e69de29 diff --git a/swap.mdwn b/swap.mdwn new file mode 100644 index 0000000..e69de29 diff --git a/vservers.mdwn b/vservers.mdwn new file mode 100644 index 0000000..e69de29 -- cgit v1.2.3