Unicorn: Difference between revisions
Elimisteve (talk | contribs) m (Linkified '@elimisteve') |
Elimisteve (talk | contribs) mNo edit summary |
||
(6 intermediate revisions by the same user not shown) | |||
Line 6: | Line 6: | ||
This utility server is 4 cores, 24gb ram, 120gb ssd storage and 12tb bandwidth. <br> | This utility server is 4 cores, 24gb ram, 120gb ssd storage and 12tb bandwidth. <br> | ||
'''Volunteers warmly encouraged to setup and maintain it! Please contact us via the main [https://lists.noisebridge.net/pipermail/noisebridge-discuss/2018-November/date.html Noisebridge Discussion Mailing List]''' | '''Volunteers warmly encouraged to setup and maintain it! Please contact us via the main [https://lists.noisebridge.net/pipermail/noisebridge-discuss/2018-November/date.html Noisebridge Discussion Mailing List]''' | ||
Line 16: | Line 15: | ||
* [https://status.noisebridge.info/ https://status.noisebridge.info/] - [https://sourcegraph.github.io/checkup/ Checkup] is [https://github.com/sourcegraph/checkup a status page] and associated service that notifies us in Slack if one of our services go down! [https://tryingtobeawesome.com/checkup/ Blog post describing setup] is located here. | * [https://status.noisebridge.info/ https://status.noisebridge.info/] - [https://sourcegraph.github.io/checkup/ Checkup] is [https://github.com/sourcegraph/checkup a status page] and associated service that notifies us in Slack if one of our services go down! [https://tryingtobeawesome.com/checkup/ Blog post describing setup] is located here. | ||
** To add new health checks for other services, edit <code>/home/noisebridge/checkup.json</code>. [https://github.com/noisebridge/config/blob/master/checkup.json See the configuration file here on our GitHub]. | ** To add new health checks for other services, edit <code>/home/noisebridge/services/checkup/checkup.json</code>. [https://github.com/noisebridge/config/blob/master/checkup.json See the configuration file here on our GitHub]. | ||
* [https://minio.noisebridge.info/ https://minio.noisebridge.info/] - [https://minio.io/ Minio] instance (S3-compatible storage) | |||
** Ask @elimisteve for the auth keys needed for login | |||
* [https://discuss.noisebridge.info/ https://discuss.noisebridge.info/] - [https://www.discourse.org/ Discourse] instance (discussion forums) | |||
* [https://chat.noisebridge.info/ https://chat.noisebridge.info/] - [https://rocket.chat/ Rocket.chat] instance (to replace our Slack!) | |||
* [https://leapchat.noisebridge.info/ https://leapchat.noisebridge.info/] - [https://www.leapchat.org/ LeapChat] instance (ephemeral encrypted Slack in your browser!) | |||
** Visit [https://leapchat.noisebridge.info/ https://leapchat.noisebridge.info/] -> Get redirected to new end-to-end encrypted room | |||
** Messages disappear after 90 days | |||
** Was largely built at Noisebridge, by @elimisteve and other volunteers | |||
** Contribute here (AGPLv3): [https://github.com/cryptag/leapchat https://github.com/cryptag/leapchat] | |||
== System Info == | == System Info == | ||
Line 48: | Line 61: | ||
* If you need a different version of some database that is already running on the default port, run the version you need in a Docker container, or on a different port (and that stores its data in a different directory!) | * If you need a different version of some database that is already running on the default port, run the version you need in a Docker container, or on a different port (and that stores its data in a different directory!) | ||
== SSH Config == | == SSH Config == | ||
Line 63: | Line 77: | ||
<code> | <code> | ||
Host unicorn-nb | Host unicorn-nb<br /> | ||
User noisebridge | User noisebridge<br /> | ||
Hostname 172.93.55.252 | Hostname 172.93.55.252<br /> | ||
PreferredAuthentications publickey | PreferredAuthentications publickey<br /> | ||
IdentityFile ~/.ssh/unicorn-nb | IdentityFile ~/.ssh/unicorn-nb<br /> | ||
</code> | </code> | ||
Line 76: | Line 90: | ||
...and thanks to the <code>~/.ssh/config</code> entry, the name of the server you're trying to SSH into -- namely <code>unicorn-nb</code> in this case -- should autocomplete! Add your name to the access list below! | ...and thanks to the <code>~/.ssh/config</code> entry, the name of the server you're trying to SSH into -- namely <code>unicorn-nb</code> in this case -- should autocomplete! Add your name to the access list below! | ||
== Access == | |||
== SSH Access == | |||
* [[User:James|@jslack]] - James | * [[User:James|@jslack]] - James | ||
Line 84: | Line 99: | ||
For SSH access, visit the Unicorn Slack channel and ask @jslack, @elimisteve, or @Rando. | For SSH access, visit the Unicorn Slack channel and ask @jslack, @elimisteve, or @Rando. | ||
== DNS Access == | |||
noisebridge.info is registered on NameCheap.com . As of 2019.02.13, @mindfu, @elimisteve, and @jslack have permission to edit DNS (on NameCheap). | |||
Keeping in mind that <code>*.noisebridge.info</code> already points to Unicorn, if you nonetheless need to edit DNS, tell [[User:Elimisteve|@elimisteve]], [[User:James|@jslack]], or @mindfu your NameCheap username or email. |
Revision as of 01:00, 14 February 2019
Unicorn is a homage to our long dead server, formerly known as Stallion.
It has no guaranteed uptime or functionality; it is up to you to keep the services you want running, running. Like a stallion.
This utility server is 4 cores, 24gb ram, 120gb ssd storage and 12tb bandwidth.
Volunteers warmly encouraged to setup and maintain it! Please contact us via the main Noisebridge Discussion Mailing List
Services
Unicorn currently hosts:
- https://noisebridge.info/ - Unicorn homepage
- https://status.noisebridge.info/ - Checkup is a status page and associated service that notifies us in Slack if one of our services go down! Blog post describing setup is located here.
- To add new health checks for other services, edit
/home/noisebridge/services/checkup/checkup.json
. See the configuration file here on our GitHub.
- To add new health checks for other services, edit
- https://minio.noisebridge.info/ - Minio instance (S3-compatible storage)
- Ask @elimisteve for the auth keys needed for login
- https://discuss.noisebridge.info/ - Discourse instance (discussion forums)
- https://chat.noisebridge.info/ - Rocket.chat instance (to replace our Slack!)
- https://leapchat.noisebridge.info/ - LeapChat instance (ephemeral encrypted Slack in your browser!)
- Visit https://leapchat.noisebridge.info/ -> Get redirected to new end-to-end encrypted room
- Messages disappear after 90 days
- Was largely built at Noisebridge, by @elimisteve and other volunteers
- Contribute here (AGPLv3): https://github.com/cryptag/leapchat
System Info
- Homepage URL: noisebridge.info
- IP:
172.93.55.252
- OS: Debian 9 x86_64
- Web server: Nginx is running on ports 80 and 443
- Domains: Current domains and subdomains hosted on this server: (see
/etc/nginx/sites-enabled/*
)
- DNS: all
*.noisebridge.info
subdomains point to this server, as does the naked domain (noisebridge.info
)
- SSL: certbot runs every day to renew certs for all (sub)domains it knows about
- To add a new service at, say,
somethingcool.noisebridge.info
...- Create a file similar to
/etc/nginx/sites-available/noisebridge.info
called/etc/nginx/sites-available/somethingcool.noisebridge.info
- Run
sudo ln -s /etc/nginx/sites-available/somethingcool.noisebridge.info /etc/nginx/sites-enabled/somethingcool.noisebridge.info; sudo nginx -t
- If you don't get any errors, now run
sudo service nginx restart
- Create a file similar to
Rules and Guidelines
- Be excellent to each other
- Don't fuck up other people's shit
- Usage of containers is encouraged where practical, but not required
- Databases sometimes have issues running in Docker, for example
- If you need a different version of some database that is already running on the default port, run the version you need in a Docker container, or on a different port (and that stores its data in a different directory!)
SSH Config
I can haz access?
Yes, but you are agreeing to be excellent to each other!
Consider generating a new SSH key pair with
$ ssh-keygen -b 4096
then calling it, say, unicorn-nb
, then add this to your ~/.ssh/config
file:
Host unicorn-nb
User noisebridge
Hostname 172.93.55.252
PreferredAuthentications publickey
IdentityFile ~/.ssh/unicorn-nb
If your SSH pub key (~/.ssh/unicorn-nb.pub
) has been added to unicorn-nb:~/.ssh/authorized_keys
, you should now be able to shell in by typing
$ ssh unicorn-nb
...and thanks to the ~/.ssh/config
entry, the name of the server you're trying to SSH into -- namely unicorn-nb
in this case -- should autocomplete! Add your name to the access list below!
SSH Access
- @jslack - James
- Victoria
- @elimisteve
- @rando
For SSH access, visit the Unicorn Slack channel and ask @jslack, @elimisteve, or @Rando.
DNS Access
noisebridge.info is registered on NameCheap.com . As of 2019.02.13, @mindfu, @elimisteve, and @jslack have permission to edit DNS (on NameCheap).
Keeping in mind that *.noisebridge.info
already points to Unicorn, if you nonetheless need to edit DNS, tell @elimisteve, @jslack, or @mindfu your NameCheap username or email.