Verified Commit a369b2b3 authored by Jan Alexander Steffens (heftig)'s avatar Jan Alexander Steffens (heftig)
Browse files

README.md: Normalize indent

parent 1a9380de
...@@ -8,7 +8,7 @@ It also contains git submodules so you have to run `git submodule update --init ...@@ -8,7 +8,7 @@ It also contains git submodules so you have to run `git submodule update --init
## Requirements ## Requirements
Install these packages: Install these packages:
- terraform - terraform
### Instructions ### Instructions
...@@ -42,7 +42,7 @@ Note that some roles already run this automatically. ...@@ -42,7 +42,7 @@ Note that some roles already run this automatically.
We use packer to build snapshots on hcloud to use as server base images. We use packer to build snapshots on hcloud to use as server base images.
In order to use this, you need to install packer and then run In order to use this, you need to install packer and then run
packer build -var $(misc/get_key.py misc/vault_hetzner.yml hetzner_cloud_api_key env) packer/archlinux.json packer build -var $(misc/get_key.py misc/vault_hetzner.yml hetzner_cloud_api_key env) packer/archlinux.json
This will take some time after which a new snapshot will have been created on the primary hcloud archlinux project. This will take some time after which a new snapshot will have been created on the primary hcloud archlinux project.
...@@ -87,75 +87,75 @@ Arch-audit can be used to find servers in need of updates for security issues. ...@@ -87,75 +87,75 @@ Arch-audit can be used to find servers in need of updates for security issues.
The following steps should be used to update our managed servers: The following steps should be used to update our managed servers:
* pacman -Syu * pacman -Syu
* manually update the kernel, since it is in IgnorePkg by default * manually update the kernel, since it is in IgnorePkg by default
* sync * sync
* checkservices * checkservices
* reboot * reboot
## Servers ## Servers
### vostok ### vostok
#### Services #### Services
- backups - backups
### orion ### orion
#### Services #### Services
- repos/sync (repos.archlinux.org) - repos/sync (repos.archlinux.org)
- sources (sources.archlinux.org) - sources (sources.archlinux.org)
- archive (archive.archlinux.org) - archive (archive.archlinux.org)
- torrent tracker hefurd (tracker.archlinux.org) - torrent tracker hefurd (tracker.archlinux.org)
### apollo ### apollo
#### Services #### Services
- bbs (bbs.archlinux.org) - bbs (bbs.archlinux.org)
- wiki (wiki.archlinux.org) - wiki (wiki.archlinux.org)
- aur (aur.archlinux.org) - aur (aur.archlinux.org)
- flyspray (bugs.archlinux.org) - flyspray (bugs.archlinux.org)
- mailman - mailman
- planet (planet.archlinux.org) - planet (planet.archlinux.org)
- bugs (bugs.archlinux.org) - bugs (bugs.archlinux.org)
- archweb - archweb
- patchwork - patchwork
- projects (projects.archlinux.org) - projects (projects.archlinux.org)
### soyuz ### soyuz
#### Services #### Services
- build server (pkgbuild.com) - build server (pkgbuild.com)
- releng - releng
- sogrep - sogrep
- /~user/ webhost - /~user/ webhost
- irc bot (phrik) - irc bot (phrik)
- matrix - matrix
- docker images - docker images
- arch boxes (packer) - arch boxes (packer)
### dragon ### dragon
#### Services #### Services
- build server (pkgbuild.com) - build server (pkgbuild.com)
- sogrep - sogrep
### state.cloud.archlinux.org ### state.cloud.archlinux.org
#### Services: #### Services:
- postgres server for terraform state - postgres server for terraform state
### quassel.archlinux.org ### quassel.archlinux.org
#### Services: #### Services:
- quassel core - quassel core
## Ansible repo workflows ## Ansible repo workflows
### Replace vault password and change vaulted passwords ### Replace vault password and change vaulted passwords
- Generate a new key and save it as ./new-vault-pw: `pwgen -s 64 1 > new-vault-pw` - Generate a new key and save it as ./new-vault-pw: `pwgen -s 64 1 > new-vault-pw`
- `for i in $(ag ANSIBLE_VAULT -l); do ansible-vault rekey --new-vault-password-file new-vault-pw $i; done` - `for i in $(ag ANSIBLE_VAULT -l); do ansible-vault rekey --new-vault-password-file new-vault-pw $i; done`
- Change the key in misc/vault-password.gpg - Change the key in misc/vault-password.gpg
- `rm new-vault-pw` - `rm new-vault-pw`
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment