1 | # install Squeeze |
---|
2 | # Configure each drive with a 1G partition and a rest-of-the-space partition, as RAID |
---|
3 | # Create a RAID1 for the 1G partitions |
---|
4 | # Create a RAID1 for each pair of rest-of-the-space partitions |
---|
5 | # Create an ext3 /boot on the 1G RAID1 |
---|
6 | # Create an LVM volume group named after the machine's short hostname |
---|
7 | # Create an LV called "swap" that is the same size as the machine's physical RAM |
---|
8 | # Create an LV called "root" that is 50G ext4 |
---|
9 | |
---|
10 | # ??? F11 will suggest ext4, DON'T USE IT. |
---|
11 | # - New filesystem, so it's scary |
---|
12 | # - The hosts can't mount it |
---|
13 | # - Grub can't cope with it |
---|
14 | |
---|
15 | # download Debathena archive key, verify |
---|
16 | (aptitude install debian-keyring && |
---|
17 | cd /tmp && |
---|
18 | wget http://debathena.mit.edu/apt/debathena-archive.asc && |
---|
19 | kcr_fingerprint=$(gpg --keyring /usr/share/keyrings/debian-keyring.gpg --no-default-keyring --list-keys --with-colons kcr@debian.org | grep ^pub | cut -f 5 -d :) && |
---|
20 | gpg --primary-keyring /tmp/debathena.gpg --no-default-keyring --import debathena-archive.asc && |
---|
21 | gpg --primary-keyring /tmp/debathena.gpg --no-default-keyring --refresh-keys && |
---|
22 | gpg --primary-keyring /tmp/debathena.gpg --no-default-keyring --keyring /usr/share/keyrings/debian-keyring.gpg --check-sigs --with-colons debathena@mit.edu | grep '^sig:!' | cut -d: -f5 | grep -q $kcr_fingerprint && |
---|
23 | gpg --primary-keyring /tmp/debathena.gpg --no-default-keyring --export debathena@mit.edu | apt-key adv --import) |
---|
24 | |
---|
25 | # add Debathena repos to etc/apt/sources.list.d |
---|
26 | cat <<EOF > /etc/apt/sources.list.d/debathena.list |
---|
27 | deb http://debathena.mit.edu/apt squeeze debathena debathena-config debathena-system openafs |
---|
28 | deb-src http://debathena.mit.edu/apt squeeze debathena debathena-config debathena-system openafs |
---|
29 | EOF |
---|
30 | |
---|
31 | # (on HPs) add HP repos to etc/apt/sources.list.d |
---|
32 | cat <<EOF > /etc/apt/sources.list.d/hp.list |
---|
33 | deb http://downloads.linux.hp.com/SDR/downloads/ProLiantSupportPack/ maverick/current non-free |
---|
34 | EOF |
---|
35 | |
---|
36 | # install host keytab |
---|
37 | cp $keytab /etc/krb5.keytab |
---|
38 | k5srvutil change |
---|
39 | k5srvutil delold |
---|
40 | # install ~/.k5login |
---|
41 | # clone the xen config (/etc/xen) |
---|
42 | git clone -b squeeze ssh://scripts@scripts.mit.edu/mit/scripts/git/xen.git /etc/xen |
---|
43 | |
---|
44 | # Install scripts-vm-host |
---|
45 | aptitude update |
---|
46 | aptitude install scripts-vm-host |
---|
47 | |
---|
48 | # (on HPs) install HP software |
---|
49 | aptitude install hpacucli hp-health |
---|
50 | |
---|
51 | # Configure exim4 to use smarthost (outgoing.mit.edu), no local mail |
---|
52 | dpkg-reconfigure exim4-config |
---|