The bt02srv server started as an experiment, and had Ubuntu 9.10 Desktop on it. Over a year of use it emerged into a "real" server, so it made much more sense to reinstall with a LTS Ubuntu server version in order to get the server-specific system settings, as well as having long-term update support from repositories.

1. /etc
2. /opt
3. /var/www
4. /boot
5. /root

1. dpkg –get-selections > 9.10_packages.txt

10.04 Server x86_64

1. sudo apt-get dist-upgrade
2. reboot

1. sudo apt-get install mdadm
2. plug in RAID tower eSATA
3. reboot (probably optional)
4. sudo mdadm –auto-detect
5. sudo mount /dev/md0 /mnt
6. sudo mv /etc/mdadm/mdadm.conf /etc/mdadm/mdadm.conf.orig
7. sudo cp /mnt/backups/before_10.04/etc/mdadm/mdadm.conf /etc/mdadm/mdadm.conf
8. add /dev/md0 to fstab
9. reboot to test

1. sudo apt-get install build-essential

1. sudo cp -a /etc/ssh /etc/ssh.orig
2. sudo service ssh stop
3. sudo cp /mnt/backups/before_10.04/etc/ssh/*key* /etc/ssh/
4. sudo service ssh start

1. sudo su -
2. cd /
3. mv root root.orig
4. mv root/ root.orig
5. cp -a /mnt/backups/before_10.04/root/ /root

1. sudo apt-get install apt-cacher-ng
2. chown -R apt-cacher-ng:apt-cacher-ng /mnt/apt-cacher-ng/
3. edit /etc/apt-cacher-ng/acng.conf:

CacheDir: /mnt/apt-cacher-ng

1. sudo /etc/init.d/apt-cacher-ng restart

1. sudo apt-get install backuppc

auto password: 0FY25aM2

	htpasswd /etc/backuppc/htpasswd backuppc
- cd /var/lib
- sudo mv backuppc/ backuppc.orig
- sudo ln -s /mnt/backuppc backuppc
- sudo mv /etc/backuppc/hosts /etc/backuppc/hosts.orig
- sudo cp /mnt/backups/backup.0/etc/backuppc/hosts /etc/backuppc/
- sudo cp /mnt/backups/backup.0/etc/backuppc/172.26.*pl /etc/backuppc/
- sudo chown -R backuppc:www-data /etc/backuppc
- sudo chown -R backuppc:backuppc /mnt/backuppc/
- sudo usermod -s /bin/bash backuppc
- ps aux | grep "BackupPC -d"
- sudo killall -HUP 7442

BackupPC web interface with Active Directory auth:

1. sudo apt-get install libapache2-mod-perl2 libapache2-mod-perl2-dev libauthen-simple-ldap-perl
2. sudo cpan

install Apache2::AuthenMSAD

	exit
- sudo vim /etc/backuppc/apache2.conf

AuthName "Microsoft Active Directory Authentication"
AuthType Basic

PerlAuthenHandler Apache2::AuthenMSAD
PerlSetVar MSADDomain ilri.cgiarad.org
PerlSetVar MSADServer 172.26.0.218

require valid-user
#require user aorth akihara jmagochi

1. sudo a2enmod perl
2. sudo apache2ctl graceful

BackupPC can send emails to notify of failed backups, etc. We will use postfix's sendmail to relay all the mails to the REAL mail server at the institute; this is called a "relay" or "smart" host.

Postfix is installed by default when you install BackupPC, but it's not configured. Reconfigure it to act as a "Satellite System" using dpkg-reconfigure:

$ sudo dkpg-reconfigure

After that the emails should be working. Test if BackupPC is able to send messages:

$ sudo su - backuppc
/usr/share/backuppc/bin/BackupPC_sendEmail -u a.orth@cgiar.org

1. sudo apt-get install ruby rubygems libopenssl-ruby
2. sudo gem install rails -v=2.3.5
3. sudo apt-get install libsqlite3-dev
4. sudo gem install sqlite3-ruby
5. sudo gem install fastthread
6. sudo gem install -v=0.4.2 i18n
7. sudo cp -a /mnt/backups/before_10.04/opt/redmine* /opt/
8. test using the standalone ruby web server: /opt/redmine/script/server -e production

1. sudo sh -c 'echo "deb http://apt.brightbox.net lucid main" > /etc/apt/sources.list.d/phusion_passengerlist'
2. wget -q -O - http://apt.brightbox.net/release.asc | apt-key add -
3. sudo apt-get update
4. sudo apt-get install libapache2-mod-passenger
5. create /etc/apache2/conf.d/redmine.conf:

RailsBaseURI /redmine
RailsEnv production

<Directory "/var/www/redmine">
        AllowOverride all
        Options -MultiViews
        #Options Indexes ExecCGI FollowSymLinks
        Order allow,deny
        Allow from all
</Directory>

1. sudo ln -s /opt/redmine/public /var/www/redmine

1. sudo a2enmod ssl
2. sudo cp /mnt/backups/before_10.04/etc/apache2/sites-enabled/default-ssl /etc/apache2/sites-enabled/
3. sudo cp -a /etc/ssl /etc/ssl.orig
4. cp /mnt/backups/before_10.04/etc/ssl/certs/ssl-cert-snakeoil.pem /etc/ssl/certs/ssl-cert-snakeoil.pem
5. cp /mnt/backups/before_10.04/etc/ssl/private/ssl-cert-snakeoil.key /etc/ssl/private/ssl-cert-snakeoil.key
6. copy 80 → 443 rewrite to /etc/apache2/sites-enabled/000-default:

<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteCond %{HTTPS} off 
    # rewrite only trac login pages to HTTPS
    #RewriteCond %{REQUEST_URI} trac/(avid|beca)/login
    # grab the request minus the / (we place a slash in the rewritten URL)
    RewriteRule ^/(.*)$ https://172.26.17.2/$1 [R,L]
</IfModule>

1. add "ServerName bt02srv" to the default-ssl VirtualHost configuration.
2. sudo apache2ctl graceful

1. sudo apt-get install git-core
2. adduser –system –group –shell /bin/bash –disabled-password –home /var/cache/git/ –no-create-home git
3. cp -a backup.0/var/cache/git/* backup.0/var/cache/git/.ssh /var/cache/git/
4. chown -R git:git /var/cache/git/

Here I add a user for Solomon Kihara

1. sudo cp -a /mnt/backup/akihara /home/
2. sudo adduser –shell /bin/bash –home /home/akihara/ –no-create-home akihara
3. sudo chown -R akihara:akihara /home/akihara/
4. sudo gpasswd -a akihara admin

1. add "noatime" to all ext4 partitions in /etc/fstab
2. disable command-not-found in /etc/bash.bashrc
3. sudo apt-get autoremove
4. reboot