| | 1 | #!/bin/bash |
| | 2 | |
| | 3 | # Run on newly created node as a kerberos/afs admin with local sudo rights |
| | 4 | |
| | 5 | set -e |
| | 6 | set -v |
| | 7 | set -x |
| | 8 | |
| | 9 | # Misc postinst stuff |
| | 10 | # Unfortunately has to be run after the first reboot by an admin user |
| | 11 | |
| | 12 | # Extract host keytab |
| | 13 | sudo kadmin -p ${USER}@HCOOP.NET -r HCOOP.NET -q "ktadd -k /etc/krb5.keytab host/navajos.hcoop.net@HCOOP.NET" |
| | 14 | sudo chown root:root /etc/krb5.keytab |
| | 15 | sudo chmod go-rwx /etc/krb5.keytab |
| | 16 | |
| | 17 | # Sync initial set of keytabs |
| | 18 | sudo mkdir -p /etc/keytabs |
| | 19 | |
| | 20 | (ssh fritz.hcoop.net cd /etc/keytabs \; sudo tar clpf - . | \ |
| | 21 | (cd /etc/keytabs; sudo tar xlpf -)) |
| | 22 | |
| | 23 | # deploy domtool locally |
| | 24 | sudo touch /var/log/domtool.log |
| | 25 | sudo chown domtool:nogroup /var/log/domtool.log |
| | 26 | sudo chmod 600 /var/log/domtool.log |
| | 27 | |
| | 28 | sudo mkdir -p /var/domtool |
| | 29 | sudo chown domtool:nogroup /var/domtool |
| | 30 | sudo chmod 755 /var/domtool |
| | 31 | |
| | 32 | sudo mkdir -p /var/log/apache2 |
| | 33 | sudo mkdir -p /var/log/apache2/user |
| | 34 | sudo chown domtool:nogroup /var/log/apache2/user |
| | 35 | sudo chmod 755 /var/log/apache2/user |
| | 36 | |
| | 37 | sudo -u domtool mkdir -p /var/domtool/vhosts |
| | 38 | sudo -u domtool touch /var/domtool/local_domains.cfg |
| | 39 | sudo -u domtool mkdir -p /var/domtool/firewall |
| | 40 | |
| | 41 | # FIXME: move this script to the common scripts volume |
| | 42 | ~clinton_admin/deploy-domtool-on-host.sh --slave |
| | 43 | |
| | 44 | # Basic Packages Needed for Web Serving |
| | 45 | sudo apt-get install apache2-mpm-prefork hcoop-apache2-config |
| | 46 | |
| | 47 | echo "Manually run 'domtool-admin regen' if needed" |
HCoop / hcoop / zz_old / machine-template.git / blame_incremental