Commit | Line | Data |
---|---|---|
fa86f70c CE |
1 | #!/bin/bash |
2 | ||
3 | # Run on newly created node as a kerberos/afs admin with local sudo rights | |
4 | ||
5 | set -e | |
6 | set -v | |
7 | set -x | |
8 | ||
9 | # Misc postinst stuff | |
10 | # Unfortunately has to be run after the first reboot by an admin user | |
11 | ||
12 | # Extract host keytab | |
13 | sudo kadmin -p ${USER}@HCOOP.NET -r HCOOP.NET -q "ktadd -k /etc/krb5.keytab host/navajos.hcoop.net@HCOOP.NET" | |
14 | sudo chown root:root /etc/krb5.keytab | |
15 | sudo chmod go-rwx /etc/krb5.keytab | |
16 | ||
17 | # Sync initial set of keytabs | |
18 | sudo mkdir -p /etc/keytabs | |
19 | ||
20 | (ssh fritz.hcoop.net cd /etc/keytabs \; sudo tar clpf - . | \ | |
21 | (cd /etc/keytabs; sudo tar xlpf -)) | |
22 | ||
23 | # deploy domtool locally | |
24 | sudo touch /var/log/domtool.log | |
25 | sudo chown domtool:nogroup /var/log/domtool.log | |
26 | sudo chmod 600 /var/log/domtool.log | |
27 | ||
28 | sudo mkdir -p /var/domtool | |
29 | sudo chown domtool:nogroup /var/domtool | |
30 | sudo chmod 755 /var/domtool | |
31 | ||
32 | sudo mkdir -p /var/log/apache2 | |
33 | sudo mkdir -p /var/log/apache2/user | |
34 | sudo chown domtool:nogroup /var/log/apache2/user | |
35 | sudo chmod 755 /var/log/apache2/user | |
36 | ||
37 | sudo -u domtool mkdir -p /var/domtool/vhosts | |
38 | sudo -u domtool touch /var/domtool/local_domains.cfg | |
39 | sudo -u domtool mkdir -p /var/domtool/firewall | |
40 | ||
41 | # FIXME: move this script to the common scripts volume | |
42 | ~clinton_admin/deploy-domtool-on-host.sh --slave | |
43 | ||
44 | # Basic Packages Needed for Web Serving | |
45 | sudo apt-get install apache2-mpm-prefork hcoop-apache2-config | |
46 | ||
47 | echo "Manually run 'domtool-admin regen' if needed" |