Opened 10 years ago

Closed 10 years ago

#2023 closed task (fixed)

please provision a server/VM for Thandy testing

Reported by: erinn Owned by: weasel
Priority: Medium Milestone: Deliverable-Mar2011
Component: Company Version:
Severity: Keywords:
Cc: Sebastian Actual Points:
Parent ID: Points:
Reviewer: Sponsor:


We're going to start working on Thandy ( and need a server to begin testing distribution, roles, and other such things. Having a URL like would be good too.

Some requirements:

  • three separate accounts: one for timestamping, one for me to use and upload stuff, and one to run the webserver. I'll suggest these as names: thandy-admin, thandy-upload, and thandy-www. Maybe someone (Nick) will have better suggestions.
  • admin-level permissions for Sebastian and I to be able to change server configuration. For this reason it might be better to have a separate VM dedicated to Thandy stuff, though given the currently minimal resource requirements, it could be a pretty small one.
  • ability to serve stuff over http/https.


Child Tickets

Change History (4)

comment:1 Changed 10 years ago by weasel

Cc: Sebastian added

Ok, after some discussion on IRC I think the following is what we
came up with and agreed to:

  • we do not need a dedicated VM. Anything that has an apache will do.
  • vescum appears to be a good candidate.
  • we do not need three role accounts, bacause the following is sufficient: o A single role account to run the timestamping/re-signing cronjob o A group that contains the people who should be allowed to add

stuff to the document root. This can be a single group for now,
maybe in the future we need more.

o The document tree is exported by apache which already runs as its own

dedicated user and group.

Does this summary match your recollections?


comment:2 Changed 10 years ago by Sebastian


comment:3 Changed 10 years ago by weasel

Status: newneeds_review
  • thandy user exists, thandy group exists that may sudo to thandy - currently erinn, sebastian, nickm.
  • that group also has write access to the thandy documentroot
  • thandy's document root is exposed via apache on thandy.tpo.

comment:4 Changed 10 years ago by weasel

Resolution: fixed
Status: needs_reviewclosed

nobody complained or even bothered to react in almost 2 weeks. good enough for me.

Note: See TracTickets for help on using tickets.