h1. Server Team Meeting, June 27-29, 2014
h2. Organisational infos
Start: Friday, June 27, 10:00
End: Sunday, June 29, 15:00 (open end?)
Location:
snowflake productions gmbh
Bruchstrasse 43
CH-6003 Luzern
\url{http://www.openstreetmap.org/way/95916486}
Steffen: 1 Parkplatz im Innenhof, Nr. 1
Accommodation:
Hotel Rothaus
Klosterstrasse 6
CH-6003 Luzern
\url{http://www.openstreetmap.org/way/96203531}
h2. Participants
Please add your arrival and departure time:
* Michael Stucki - arriving on Friday, ca. 10:00 - leaving Sunday, ca. 18:00
* Andri Steiner - arriving on Friday, ca. 10:00 - leaving Sunday, ca. 18:00 - no Hotel needed
* Bastian Bringenberg - arriving on Friday, ca. 10:00 - leaving Sunday, ca. 14:00
* Peter Niederlag - arriving on Friday, ca.14:00 - leaving Sunday, ca. 14:00
* Christian Zenker - can't attend
* Steffen Gebert - Friday evening to Sunday
* Fabien Udriot - Saturday to Sunday ca. 10:00 - leaving Sunday, ca. 10:00
* Guido Haase - arriving Friday ~13:00 - leaving Sunday ~17:00 (FYI: guido.haase@typo3.org)
* Christian Trabold: not attending (maybe via Skype?)
TODO: Add your name to the list above, or write if you will not join!
h2. Agenda
* Update Redmine [Ben, Peter, Steffen, Michael]
* MQ for TYPO3.org (already final, but needs to be tested) [Bastian]
* Tested okay is send to Christian Zenker
* Discussion: chef, lessons learned/best practice [Peter]
* solo vs. zero
* omnibus vs. gem vs. chefdk
* chef-metal
* berkshelf
* t3stacks
* CI/Package Build Server [Andri, Steffen]
* LDAP server for SSO (investigate) [Andri, Bastian, Guido]
* We deceided, that for the Moment to work with slapd and not with 389 as slapd is native debian and not
* Also we deceided to use simplesaml as is looks a lot more easy than kerberos
* Third as a first Administration Enviroment we will use phpLdapAdmin
* Bastian is going to setup a test enviroment this weekend: ( cloning TYPO3s Point of view )
* cn=typo3,cn=org
* ou=users
* uid=avalarion\_avarres
* gid=TYPO3 Server Administrators
* gid=Extension Key Admin
* ...
* ...
* ou=groups
* gid=TYPO3 Server Administrators
* ...
* Guido started an investigation about moving current fe\_users from typo3.org MySQL DB to LDAP and adminstering them with an extension, see => \url{https://notes.typo3.org/p/LDAP\_investigation}
*
* Fix Zabbix [Steffen / all] ( tomorrow )
* DNS Server installation [Andri, Bastian, Guido]
* Planet Webspace [Fabien, all]
* Domain ts-ref.de
* OTRS for SecurityTeam [Steffen]
* Metrics.typo3.org => Jenkins dkd? Sonar dkd? [evening / all]
* Chef \& etckeeper [Michael] [tomorrow]
* DNS syncing issues - how do we proceed?[Andri]
* Servers at punkt.d (BIND) and snowflake (PowerDNS) uses different approaches regarding invalid Zones
* BIND: Discard the whole Zone and reply SERVFAIL to all requests
* PowerDNS: Just uses the first Record
* Solutions
* use only snowflake DNS Infrastructure (there ist a 3rd external Server which isnt used by typo3.org atm)
* setup an own (Slave or Master) DNS Server on our Hetzner Infrastructure
* fix the Webinterface to check on such invalid Records (unlikely...)
* wait for snowflakes DNS Webinterface 2.0 (ETA unknown by now)
* PGP/CACert Keysigning Party
* PGP: write E-Mail, Key ID and Fingerprint to the Wall
* CACert: fill CAP Form, go to Andri, ...
* Demo Site [Fabien, all]
* Neos demo
* Replace server
h2. Report
The report has been published: \url{http://buzz.typo3.org/teams/server-admin/article/server-team-sprint-20142/}