Team:Sysadmin/Meeting 20240910
Jump to navigation
Jump to search
| Sysadmin/Meeting 20240910 | |
|---|---|
| Name | Team:Sysadmin: Regular Meeting |
| StartDate | 2024/09/10 20:00:00 |
| EndDate | 2024/09/10 21:00:00 |
| Where | https://meet.hack42.nl/team-sysadmin |
| Team | Sysadmin |
Present (Alphabetically): Boekenwuurm, H00913, Splodin, Viserion, Xesxen
Agenda:
- Join IRC!
- Add this meeting series to your agenda: Click "Add meetings to your calendar" on https://wiki.why2025.org/Team:Sysadmin
- Add the event meetings to your agenda: Click "Add meetings to your calendar" on https://wiki.why2025.org/Meetings
- Status update: Account provisioning
- Servers:
- myne.ifcat.org (Main docker server)
- delia.ifcat.org (New mail server, WIP, not much to see here)
- lutz.ifcat.org (Secondary docker server due to resource usage, CFP + OpenProject)
- mail.ifcat.org (Legacy mail server)
- Services:
- Gitlab
- Nextcloud
- Postfixadmin
- Zammad
- Zabbix
- CFP
- Mediawiki (roles)
- ~Everyone: Send SSH keys, desired username, public Gitlab handle, IPv4/6 addressen voor SSH firewall
- Servers:
- Shared credentials / password store
- Hein-Jan checks @ 1Password for account (free)
- Outstanding support request & incoming mail/pigeons (RFC 1149 compliant)/smoke signals
- Upcoming changes / things-to-be-build
- Automate docker deployments (read: container updates) for specific team projects (website/terrain map/...)
- https://containrrr.dev/watchtower/
- https://www.portainer.io/ ?
- $alternatieven
- Pretix -> Team:Ticket & Entrance
- Map -> Team:Terrain
- Automate docker deployments (read: container updates) for specific team projects (website/terrain map/...)
- Resource usage
- Status of Sunsetting support.mch2021.org
- Barely seeing any usage. Pending major tickets have been migrated
- SSO: Setup
- Create accounts for preexisting WHY2025 mailboxes and aliases (which don't point to WHY2025 mailboxes), and IFCAT mailboxes
- Requirements:
- Has to support LDAP (see below)
- Has to support things like OIDC / SAML
- Choice of software:
- Last time used Keycloak
- Use authentik this time?
- Hedgedoc: User accounts for orga (via SSO?)
- IRC Bouncer-ish: The Lounge (https://thelounge.chat/)
- Requires LDAP for integrating with a central user system
- Monitoring: Disallow public mails on mailing lists (enforce: generic_nonmember_action != 0)
- Event on-site: Yolocolo
- Budget form...
- Viserion: Inform Team:Terrain for on-site workspaces (2 tables)
- Note Xesxen: Extra tables for Yolocolo
- Date picker for hands-on at Hackalot: Splodin
- WVTTK
Done @ 21:30