Difference between revisions of "System Administrators Checklist"

← Older edit

System Administrators Checklist (view source)

Revision as of 20:58, 7 January 2021

1,678 bytes added , 20:58, 7 January 2021

add public key crypto article

Pravs

Bureaucrats, Administrators

218

edits

@@ Line 1: / Line 1: @@
-Pre-Requisites: How to install GNU/Linux, Familiarity with Command Line, disk partitioning with logical volume manager, authenticating with ssh keys
+= Pre-Requisites (you need to learn yourself) =
+# How to install GNU/Linux - Follow https://www.debian.org/releases/stable/amd64/
+# Familiarity with Command Line - Follow https://ryanstutorials.net/linuxtutorial/
+# disk partitioning with logical volume manager - Follow https://opensource.com/business/16/9/linux-users-guide-lvm, create a virtual machine using tools like GNOME Boxes, Virt manager, Virtual Box etc. Learn about virtualization https://www.ibm.com/cloud/learn/virtualization-a-complete-guide
+# authenticating with ssh keys - Follow https://git.fosscommunity.in/help/ssh/README.md and https://www.redhat.com/sysadmin/configure-ssh-keygen
-Server basics (we will teach you): switching users (sudo, su), ssh key based authentication (scp, rsync, custom ssh port, mosh), software raid, encrypted partitions (using virtual machines), firewall with ufw, postgresql replication, lxc container (setup services on your local machine), sharing passwords with gpg encrypted files, nginx basic, screen/tmux/nohup, symbolic links (ln -s), locales, environment variables
+= Basic Concepts (we will teach you) =
+# Public Key Cryptography  https://hackernoon.com/public-key-cryptography-simply-explained-e932e3093046 (Asymmetric Key Encryption)
+# Let's Encrypt https://letsencrypt.org/ (Free automated TLS certificates for https)
+= Server basics (we will teach you) =
+# switching users (sudo, su)
+# remote access (scp, rsync, custom ssh port, mosh),
+# software raid
+# encrypted partitions/luks (using virtual machines)
+# firewall with ufw
+# postgresql replication (backup)
+# scheduled backups (rsync and cron)
+# lxc container (setup services on your local machine)
+# sharing passwords with gpg encrypted files
+# nginx basics (setup web server, add custom index page)
+# screen/tmux/nohup
+# symbolic links (ln -s)
+# locales
+# environment variables
+# local network configuration (/etc/hosts, ip, ss).
+# Starting and stopping services (systemctl)
+# Log file handling (tail -f, truncate, logrotate)
 == Switching users ==
 sudo or su commands can be used to run commands as different users. `sudo -u <username>` for running as different user. `su - postgres` can give you a shell as postgres user.
+== Remote access to machines ==
+#. ssh - remote shell (with ssh server on custom ports)
+#. scp/sftp/rsync - copy files. "Deprecating scp" - https://lwn.net/Articles/835962/
+#. mosh - for bad connections
 == Symbolic links ==
@@ Line 15: / Line 46: @@
 `dpkg-reconfigure locales`
+= Free Software Camp Tasks =
+* Setup feed2toot for fsci blog, diasp.in updates - https://git.fosscommunity.in/fsfi/camp/-/issues/36#notes
+* Setup backup for all services
+* Setup ansible for all services
+* Security audit and compliance across all services
+* Setup [https://wiki.debian.org/buildd buildd] for fasttrack - https://wiki.debian.org/BuilddSetup
+* Fix golang upload issues in fasttrack
+* Setup security tracker for fasttrack
+= Free Software Camp Resources =
 * [[Hosting_Providers_with_free_tiers_or_credits]]