Hide menu

System Configuration

Server setup

The company server will be named pumi-X.ida.liu.se, where X is the number of your company. It is a virtual server running on a hardware with 8x2.2GHz CPUs, which will give each company server at least 2x2.2 GHz (probably more if not all companies are using their server at once).

Each server is setup with 16Gb harddisk space and 3 Gb RAM. Initially it will contain a Debian Wheezy (Stable) installation, with Subversion and Trac (web based SCM and project management system).

Users and access

In the basic setup, the root user has a randomized (unknown) password. To run things as root, you can either:

  • Login using SSH as yourself, run "sudo su", enter your own password and you are root.
  • or
  • Prefix every command you want to run as root with sudo (super-user do)
Note that if something goes terribly wrong, we cannot help you fix a broken server with a new root password, only reinstall it from scratch.

The company server is running NIS, and has therefore access to validate login from all students at LIU. This is not wanted, because only the students in the company should be allowed to login. Therefore the access is restricted. By editing the file /etc/security/access.conf you can add or remove students that are allowed to log in. Remember to also add/remove the student from /etc/sudoers using the command visudo if they need/had sudo rights.

Apache

Apache is configured in /etc/apache2/sites-available/default. For now it shows the folder /var/www as the server root, which means the file /var/www/index.html will show up as pumi-X.ida.liu.se/index.html.

If you want a folder in /var/www to be secret from other companies, you can add this to the default config file (replace secret/ with whatever directory you want to protect).

    <Directory /var/www/secret/>
      Options Indexes FollowSymLinks MultiViews
      AllowOverride None
      AuthType CAS
      AuthName "PUM group X secret pages (or whatever)"
      AuthGroupFile /etc/apache2/groupfile
      require group student
    </Directory>
  

Trac

Trac is setup in /var/lib/pumtrac with a sqlite database and apache web server. Subversion is setup in /var/lib/pumsvn. Trac is accessable from a browser at http://pumi-X.ida.liu.se/trac

The access to Trac is limited to the users defined in /etc/apache2/groupfile. Note that this is not the same as /etc/security/access.conf, so you actually have to edit three files when adding or removing company members. After editing the groupfile, you have to restart apache with

    > /etc/init.d/apache2 reload
  

To give a user admin privileges (the trac administrator) use trac-admin

    > trac-admin /var/lib/pumtrac permission add myusr123 TRAC_ADMIN
  
This administrator will then be allowed to access a admin tab in the Trac web interface where he will find information on which plugins are installed, install new plugins, change the rights for other users etc...

Plugins can also be installed manually (by downloading, compiling and copying to the pumtrac/plugins folder. Every plugin has their own instructions on how to do it) or by using easy_install. To install easy_install run

    > apt-get install python-setuptools python-dev build-essential
  
and then, to install i.e. AccountManagerPlugin run
    > easy_install TracAccountManager
  
and restart the apache web server.

More information about Trac and plugins is available at the Trac webpages http://trac.edgewall.org/

Some good plugins:


Page responsible: Kristian Sandahl
Last updated: 2013-09-11