Tag: Eisfair

Eisfair Configuration

Service List to Install \ Configure:

Inet Service: SSH Port
Certs Service: -
Apache2 Webserver: Web Port, Log Settings
MySQL Server: Mysql Port, Log Settings, Network Enable, Cache Sizes
Squid proxy: Cache off
Minicom Service: -
LPRng: -
Samba: Create Users and Configure Shares and Network
Dyndns: Configure DynDns Services
MINI_HTTPD: Port, SSL, Special Configuration
Netdate Service: Configure NTP Server
teamspeak: Configure superadmin, admin
streamripper: -
RSYNC: Configure Backup Shares and User
Power Button: -

Firewall:
/etc/hosts.allow
---------------------------------
#----------------------------------------------------------------------
# /etc/hosts.allow file generated by '/tmp/install.sh'
#
# Creation date:  10.02.2005  root
#
# Do not edit this file directly, create a '/etc/hosts.allow.package-name'
# file and re-run the 'update-hosts.allow' command to update.
#----------------------------------------------------------------------

ALL:ALL

Ramdisk:

/etc/init.d/ramdisk

#! /bin/sh
#----------------------------------------------------------------------------
# /etc/init.d/ramdisk - ramdisk secrets.tdb            vscan-fprotd.conf
#roup.old       mib.txt         secrets.tdb.samba.bak  vscan-fsav.conf
# Creation:     19.07.2003  fm  securetty              vscan-icap.conf
# Last Update:  20.07.2003  fm  security               vscan-oav.conf
#osts.allow     motd            services               vscan-sophos.conf
# Copyright (c) 2003 Frank Meyer <frank@eisfair.org>   vscan-trend.conf
#ttpd           mtools.conf     shadow                 wgetrc
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#----------------------------------------------------------------------------

case $1
in
start)
/bin/mount -t ramfs log /var/log -o maxsize=2000
/bin/mount -t ramfs www-log /var/www/log -o maxsize=2000
#/bin/mount -t ramfs none /var/squid/log -o maxsize=2000
# modprobe usb-storage   >/dev/null 2>&1
# insmod sd_mod          >/dev/null 2>&1
# insmod usb-uhci        >/dev/null 2>&1
# insmod usb-ohci        >/dev/null 2>&1
;;
stop)
umount /var/log
umount /var/www/log
#umount /var/squid/log
;;
esac

chmod +x

SymLinks in /etc/rc2.d/K37ramdisk, S37ramdisk

Local

/etc/init.d/local

#! /bin/sh
#----------------------------------------------------------------------------
# /etc/init.d/local - rc script for gerneral purpose
#
# Creation:     19.07.2003  fm
# Last Update:  20.07.2003  fm
#
# Copyright (c) 2003 Frank Meyer <frank@eisfair.org>
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#----------------------------------------------------------------------------

case $1
in
start)
# mount /dev/hdc /hdd -t ext3
# hdparm -d1 /dev/hdc # DMA an
# hdparm -S 30 /dev/hdc # Spindown
# hdparm -y /dev/hdc # Sofort Spindown

#/pvpgn/sbin/bnetd
;;

stop)
# umount /hdd

#killall bnetd
ethtool -s eth0 wol g
;;
esac

Base, Special User:

 vi /home/USER/.profile
 exec /bin/bash -r

 vi /home/USER/.bashrc
 alias bash='echo "syntax error"'
 alias unalias='echo "ooh, arent you a clever boy!"'
 alias alias='echo "nice try"'

HTTPD:

1.  /etc/httpd/mini_httpd.conf
pidfile=/var/run/mini_httpd_base.pid
pidfile=/var/run/mini_httpd.pid

2.  vi /etc/adminlog.conf
Inhalt: *.* /var/log/log.admin
3.  vi /usr/local/htdocs/adminlog.cgi mit Inhalt
#!/bin/sh
#------------------------------------------------------------------------------
# syslog.cgi - show the syslog-file
#
# Creation: 28.10.2003 mgh
# LU : 02.08.2004 opi
#
# 02.08.04 add missing end tags on error exits
#
#------------------------------------------------------------------------------

SEC_REALM='logs'
SEC_ACTION='view'

. sec-lib.cgi

# Parse variables...
eval "`proccgi $*`"

echo "Content-Type: text/html; charset=iso-8859-1"
echo "Cache-control: no-store" # HTTP/1.1 (or no-cache?)
echo "Pragma: no-cache" # HTTP/1.0
echo "Expires: `date -Ru`" # Expires now!
echo
echo '<html><head>'
echo '<LINK REL=STYLESHEET TYPE="text/css" HREF="main.css">'
echo '<title>Syslog</title>'
echo '</head><body bgcolor="#FFFFFF" text="#000000">'

if [ ! -f /etc/adminlog.conf ]
then
echo "<h1>Error</h1><p>Keine /etc/adminlog.conf
vorhanden!</p></body></html>"
exit 1
fi

set -f # disable pathname expansion
if [ "$FORM_target" = "" ]
then
FORM_target='*.*'
fi

while read a b
do
if [ "$FORM_target" = "$a" -a -f "$b" ]
then
printout=$b
fi
done < /etc/adminlog.conf
set +f

if [ "$printout" = "" ]
then
echo "<h1>Fehler</h1><p>Keine Datei des Adminlog-Ziels $FORM_target
gefunden!</p></body></html>"
exit 1
fi

echo "<h1>Adminlog</h1><p>Datei: $printout ($FORM_target)<pre>"
sed '1!G;h;$!d' $printout
echo '</pre></body></html>'

exit 0

4. Es wird in der Datei /etc/httpd/menu unter
e sr.cgi Serverswitch
eine zusätzliche Zeile
e serverswitch.cgi Serverswitch
angelegt (die ins Leere zeigt).

5. mini_http Port 81

Eisfair von ESXi auf CF

- ESXi Export für Workstation / Player
- Erweitere Template mit VMXBuilder um IDE Festplatte, size minimum the SCSI HDD
(Vorsicht, IDE:0:0!, CD Laufwerk auf IDE:0:1 setzen!)
- Booted VM mit "Ultimate Boot CD", starte Tool "g4u" V1.17
- Kopiere SCSI Disk auf IDE Disk
- Editiere Template: Entferne SCSI HDD
- Boote mit "Ultimate Boot CD", DamnSmall Linux
- mount /dev/hda2
- sudo vi /etc/fstab: /dev/sda1 und /dev/sda2 auf /dev/hda1 und /dev/hda2 ändern
- umount
- boot

Bootloader
---------------------------------
---------------------------------

/etc/lilo.conf
---------------------------------
disk = /dev/hda
bios = 0x80
boot = /dev/hda
read-only
prompt
timeout = 50
vga = normal
image = /boot/kernel
root = /dev/hda2
label = eis
initrd = /boot/initrd.gz
append = "ide=nodma acpi=force"
---------------------------------

Anschließend "lilo -v"

- wenn Eisfair läuft, neustarten
- Boot auf CD Image Acronis Home
- Image erstellen und auf Netzlaufwerk speichern

Am neuen PC
- Installiere Eisfair auf dem neuen Datenträger / CF
- wenn Eisfair läuft, neustarten
- Boot auf CD Image Acronis Home
- Image von hda2 aus dem Netzlaufwerk wiederherstellen
- booten
- Anschließend "lilo -v"

fertig

Blutdrache 01 Version 1.0 (26.11.2005)

One year after the Hilfsdrache Project, I wanted to build an new server.

While an traineeship at an IT Systems firm, I got an 19'' Inch Rackpiece with (about 3 HE) - so I wanted to use that as "Case" for that project.

That server here should be different from the Hilfsdrache in serval points.

First, it should run an specialized linux distribution called "Eisfair" (www.eisfair.org) - which had been created to work as secure and easily configurable server system.

Second, this server should be absolutly quiet - and work with low power consumption.

Third, this server shouldn't host big game servers - only applications. (So it does need neither high CPU power nor an large HDD).

In the end, I used an Acer V66 Motherbord (it was quite thin and long - so it fitted the Case perfectly), an AMD K6-2 400 Mhz which I underclocked to 250 Mhz (and took down the Vcore from 2,2 V to 1,75V - so it did run passive - just needed an heat sink), and 256 MB of Sdram.

For the Powersupply, I modded an 250 Watts PSU, so that it fitted the case and rewired the security groundings to serval parts of the case. Additionally, i added some cooling sinks to the powersupply and tested it serval times with the new server: It never exceded room temperature. The same thing with the cpu.

Therefore the only mechanical thing on this server was the HDD - and that I took away from it aswell.

In the beginning, I used an 1 Gigabyte Mircodrive - but I thought of it as beeing too loud. So I changed to an 1 Gigabyte Compactflash Drive and changed Eisfair in that way, that it wrote the log files into Ramdrives - so that the Flashdrive didn't needed to endure so many write/read operations as an normal drive.

The Blutdrache nowadays uses an 100 Mbit Network Interface Card, an PCI Soundcard and an 56kbit Modem (which ain't used at the moment).

Nowadays this Server is mostly used for Teamspeak and as Personal Backup Webserver.

Also its used to provide an Secure Internet Connection for me while I'm on Work or "Outside" of my own Network. I do use the SSHD to Tunnel my Internettransfer from the Firefox of my Tablet into the Blutdrache - and use Squid as Proxy to gain Access to my own Internetconnection at Home - so my Data can't be monitored from the Outside.

So - this Server is important and nearly on daily use - and... as I planed - absolutly silent!

It hosts these Services:

- Apache

- Php

- Mysql

- FTP

- SSHD

- Squid

- Minicom (to work onto the serial Line of my WGT634U)

- Samba (for Files and Printer)

- Teamspeak RC2

- Player versus Player Gaming Network (PvPGN)

- Streamripper (in addition to an NAS or attached USB HDD)

- Webradio Client