Latest revision as of 20:27, 14 December 2011

The 2004 Server suffered a power supply failure; because it is a custom build (not out of standard parts) getting a new power supply and make it reliable was going to be painful, so we replaced the server with a Dell Optiplex 760.

This is a summary of the replacement server configuration.

Configuration

Hardware Specs

Dell Optiplex 760
Intel® Core™ 2 Duo Processor E7400 (2.80GHz, 3M, 1066MHz FSB)
4GB DDR2 Non-ECC SDRAM,800MHz, (2 DIMM)
Integrated Video, Intel® GMA 4500
320GB SATA 3.0Gb/s
16X DVD+/-RW SATA, Data Only
88% Efficient Power Supply
Service Tag 95D8Ck1 (Express Tag 19915596433)
5 Year Basic Limited Warranty and 5 Year NBD Onsite Service
ordered by Matt Lindblad

BIOS Configuration

Boot: CD, then HDD
Diskette Drive = OFF
SATA = ATA, SATA-0 ON, SATA-1 ON
External SATA Disabled
NIC Enable, USB No Boot, Parallel OFF, Serial OFF, Audio OFF
Performance keep default
Power Management: AC Recovery = Power ON

Software Requirements

The server runs the following software/services:

Stable OS (debian or ubuntu LTS)
Apache w/ OpenSSL
PHP
MySQL
Gallery 2 (for images)
- GD library for PHP so that gallery 2 can create thumbnails
MIT Data Warehouse Access
- Oracle 10 Instant Client (OCI Interface)
mediawiki
vproweather
Athena login
Emacs

System Clone (Dec 2011)

I (mwall) finally got around to cloning sailing.mit.edu to the new server. Detailed log is /home/admin/admin-log.txt

system update

did a complete system update of all packages.

smartctl

The hard disk seems to be ok, despite the high temperatures at the pavilion. Here is the summary as of 14dec11:


ID# ATTRIBUTE_NAME          FLAG     VALUE WORST THRESH TYPE      UPDATED  WHEN_FAILED RAW_VALUE
  1 Raw_Read_Error_Rate     0x000b   100   100   016    Pre-fail  Always       -       0
  2 Throughput_Performance  0x0004   128   128   054    Old_age   Offline      -       161
  3 Spin_Up_Time            0x0007   140   140   024    Pre-fail  Always       -       276 (Average 272)
  4 Start_Stop_Count        0x0012   100   100   000    Old_age   Always       -       30
  5 Reallocated_Sector_Ct   0x0033   100   100   005    Pre-fail  Always       -       0
  7 Seek_Error_Rate         0x000a   100   100   067    Old_age   Always       -       0
  8 Seek_Time_Performance   0x0004   131   131   020    Old_age   Offline      -       29
  9 Power_On_Hours          0x0012   099   099   000    Old_age   Always       -       12062
 10 Spin_Retry_Count        0x0012   100   100   060    Old_age   Always       -       0
 12 Power_Cycle_Count       0x0032   100   100   000    Old_age   Always       -       29
192 Power-Off_Retract_Count 0x0032   100   100   000    Old_age   Always       -       195
193 Load_Cycle_Count        0x0012   100   100   000    Old_age   Always       -       195
194 Temperature_Celsius     0x0002   146   146   000    Old_age   Always       -       41 (Lifetime Min/Max 23/52)
196 Reallocated_Event_Count 0x0032   100   100   000    Old_age   Always       -       0
197 Current_Pending_Sector  0x0022   100   100   000    Old_age   Always       -       0
198 Offline_Uncorrectable   0x0008   100   100   000    Old_age   Offline      -       0
199 UDMA_CRC_Error_Count    0x000a   200   200   000    Old_age   Always       -       0

Second setup attempt (Jul 2010)

I (mwall) tried to install debian 5, but this failed - network drivers did not function, no matter what I tried. So I went with Ubuntu 10.04 LTS.

OS and packages

bare-bones installation of ubuntu
installed the following packages:


 apt-get install nagios-nrpe-plugin
 apt-get install nagios-plugins-basic
 apt-get install emacs23-nox
 apt-get install openntpd
 apt-get install apcupsd
 apt-get install smartmontools
 apt-get install logwatch
 apt-get install postfix
 apt-get install lm-sensors
 apt-get install bc

Athena-tization

First attempt was like this:


 apt-get install ssh-krb5 krb5-user
 dpkg-reconfigure krb5-config

That failed, but this worked:


 wget -N http://debathena.mit.edu/install-debathena.sh
 sh install-debathena.sh

Local Users

added a few local users. logins use athena credentials. some local users are granted sudo rights.

ntpd

pointed ntp to time.mit.edu (18.7.21.144)


 /etc/openntpd/ntpd.conf

apcupsd

configured apcupsd


 /etc/default/apcupsd
 /etc/apcupsd/apcupsd.conf

tssh

installed throttle-ssh to reject script kiddies


 /opt/tssh
 /etc/rc.local
 /etc/logrotate.d/tssh
 /etc/rsyslog.d/tssh.conf

smartctl

Ran initial smartctl full disk check:


 smartctl -t long /dev/sda

updates

disable automatic updates - we update manually to avoid unanticipated problems.


 /etc/apt/apt.conf.d/sailing-pavilion

ORIGINAL SETUP ATTEMPT (2009)

I (alvarso) tried to setup the server by myself, but did not have time to finish. The steps below will be re-done by a group of volunteers in the future (Summer 2010), using a more professional configuration of the server.

Operating System

Ubuntu Server 9.04 64bit [1]
Burned to ubuntu-9.04-server-amd64.iso CD
Default USA English / keyboard layout
DHCP failed (expected): temporarily using orellana.mit.edu while being configured (manual network config)

Disk Partitions

Setup using "Guided - entire disk and setup LVM"
Select Disk: SCSI1 (sda) 320.1GB ATA (only available)
Only one partition (sda)
Maximum size

Users (during setup)

Created user mitna first
Same password as on /mit/alvarso/sailing.mit.edu/ information files
No encryption

Misc

No proxy
No automatic updates

Apps

LAMP Server
- MySQL root pass same as previous
OpenSSH server

Accounts

The server links to the MIT kerberos server to authenticate users. However, when using "SUDO" you must use your local password (which can be the same as your kerberos password, but which would NOT be updated when you change it).

Setting Up Kerberos

TBD

Creating New Accounts

To create new accounts:

 adduser <username>
 adduser <username> mitna  <-- to give access to website development

Using the standard adduser process will give the user access either via the local password (set by the admin when calling adduser) or the Kerberos password.

Basic Packages

Update package list: apt-get update
Get emacs
1. apt-get install emacs22

@@ Line 1: / Line 1: @@
-The 2004 Server suffered a power supply failure; because it is a custom build (not out of standard parts) getting a new power supply and make it reliable was going to be painful, so we replaced the server with a Dell Optiplex 760, with a 5 Year Service agreement. We have:
+The 2004 Server suffered a power supply failure; because it is a custom build (not out of standard parts) getting a new power supply and make it reliable was going to be painful, so we replaced the server with a Dell Optiplex 760.
-* Service Tag '''95D8Ck1''' (''Express Tag'' '''19915596433''')
-ordered by Matt Lindblad.
 This is a summary of the replacement server configuration.
@@ Line 8: / Line 6: @@
 == Hardware Specs ==
+* Dell Optiplex 760
 * Intel® Core™ 2 Duo Processor E7400 (2.80GHz, 3M, 1066MHz FSB)
 * 4GB DDR2 Non-ECC SDRAM,800MHz, (2 DIMM)
@@ Line 14: / Line 13: @@
 * 16X DVD+/-RW SATA, Data Only
 * 88% Efficient Power Supply
+* Service Tag '''95D8Ck1''' (''Express Tag'' '''19915596433''')
 * 5 Year Basic Limited Warranty and 5 Year NBD Onsite Service
+* ordered by Matt Lindblad
 == BIOS Configuration ==
@@ Line 40: / Line 41: @@
 * Emacs
-= System Clone (Jan 2012) =
+= System Clone (Dec 2011) =
 I (mwall) finally got around to cloning sailing.mit.edu to the new server.  Detailed log is /home/admin/admin-log.txt
+== system update ==
+did a complete system update of all packages.
+== smartctl ==
+The hard disk seems to be ok, despite the high temperatures at the pavilion.  Here is the summary as of 14dec11:
+<code>
+ ID# ATTRIBUTE_NAME          FLAG     VALUE WORST THRESH TYPE      UPDATED  WHEN_FAILED RAW_VALUE
+Raw_Read_Error_Rate     0x000b   100   100   016    Pre-fail  Always       -       0
+Throughput_Performance  0x0004   128   128   054    Old_age   Offline      -       161
+Spin_Up_Time            0x0007   140   140   024    Pre-fail  Always       -       276 (Average 272)
+Start_Stop_Count        0x0012   100   100   000    Old_age   Always       -       30
+Reallocated_Sector_Ct   0x0033   100   100   005    Pre-fail  Always       -       0
+Seek_Error_Rate         0x000a   100   100   067    Old_age   Always       -       0
+Seek_Time_Performance   0x0004   131   131   020    Old_age   Offline      -       29
+Power_On_Hours          0x0012   099   099   000    Old_age   Always       -       12062
+Spin_Retry_Count        0x0012   100   100   060    Old_age   Always       -       0
+Power_Cycle_Count       0x0032   100   100   000    Old_age   Always       -       29
+Power-Off_Retract_Count 0x0032   100   100   000    Old_age   Always       -       195
+Load_Cycle_Count        0x0012   100   100   000    Old_age   Always       -       195
+Temperature_Celsius     0x0002   146   146   000    Old_age   Always       -       41 (Lifetime Min/Max 23/52)
+Reallocated_Event_Count 0x0032   100   100   000    Old_age   Always       -       0
+Current_Pending_Sector  0x0022   100   100   000    Old_age   Always       -       0
+Offline_Uncorrectable   0x0008   100   100   000    Old_age   Offline      -       0
+UDMA_CRC_Error_Count    0x000a   200   200   000    Old_age   Always       -       0
+</code>
@@ Line 49: / Line 76: @@
 == OS and packages ==
 * bare-bones installation of ubuntu
-* installed the following packages using apt-get:
+* installed the following packages:
-** nagios-nrpe-plugin
+<code>
-** nagios-plugins-basic
+  apt-get install nagios-nrpe-plugin
-** emacs23-nox
+  apt-get install nagios-plugins-basic
-** openntpd
+  apt-get install emacs23-nox
-** apcupsd
+  apt-get install openntpd
-** smartmontools
+  apt-get install apcupsd
-** logwatch
+  apt-get install smartmontools
-** postfix
+  apt-get install logwatch
-** lm-sensors
+  apt-get install postfix
-** bc
+  apt-get install lm-sensors
+  apt-get install bc
+</code>
 == Athena-tization ==
 First attempt was like this:
 <code>
-apt-get install ssh-krb5 krb5-user<br>
+  apt-get install ssh-krb5 krb5-user
-dpkg-reconfigure krb5-config
+  dpkg-reconfigure krb5-config
 </code>
 That failed, but this worked:
 <code>
-wget -N http://debathena.mit.edu/install-debathena.sh<br>
+  wget -N http://debathena.mit.edu/install-debathena.sh
-sh install-debathena.sh
+  sh install-debathena.sh
 </code>
 == Local Users ==
-added a few local users with athena credentials
+added a few local users.  logins use athena credentials.  some local users are granted sudo rights.
-== Additional Configuration ==
+== ntpd ==
-* configured apcupsd
+pointed ntp to time.mit.edu (18.7.21.144)
-* installed throttle-ssh to reject script kiddies
+<code>
-*
+  /etc/openntpd/ntpd.conf
+</code>
+== apcupsd ==
+configured apcupsd
+<code>
+  /etc/default/apcupsd
+  /etc/apcupsd/apcupsd.conf
+</code>
+== tssh ==
+installed throttle-ssh to reject script kiddies
+<code>
+  /opt/tssh
+  /etc/rc.local
+  /etc/logrotate.d/tssh
+  /etc/rsyslog.d/tssh.conf
+</code>
 == smartctl ==
 Ran initial smartctl full disk check:
 <code>
-smartctl -t long /dev/sda
+  smartctl -t long /dev/sda
 </code>
-== disable automatic updates ==
+== updates ==
+disable automatic updates - we update manually to avoid unanticipated problems.
 <code>
-/etc/apt/apt.conf.d/sailing-pavilion
+  /etc/apt/apt.conf.d/sailing-pavilion
 </code>

Difference between revisions of "2009 - Dell Optiplex 760"

Latest revision as of 20:27, 14 December 2011

Contents

Configuration

Hardware Specs

BIOS Configuration

Software Requirements

System Clone (Dec 2011)

system update

smartctl

Second setup attempt (Jul 2010)

OS and packages

Athena-tization

Local Users

ntpd

apcupsd

tssh

smartctl

updates

ORIGINAL SETUP ATTEMPT (2009)

Operating System

Disk Partitions

Users (during setup)

Misc

Apps

Accounts

Setting Up Kerberos

Creating New Accounts

Basic Packages

Navigation menu

Personal tools

Namespaces

Variants

Views

Actions

Search

Navigation

Tools