MeridianUpgrade
03 Dec 2008 04:48 UTC 2008338+0448 UTC

Upgrade of Meridian to Fedora 7

Scheduled for Saturday 21 July 2007

Tasks:

Ensure that hard drives are working properly before installing Fedora! I.e., do a surface scan.

  • run make-a-meridian, this should generate files for:
    • hosts file
    • dns
    • dhcp
    • iptables
  • and set up:
    • hostname
    • rpms
    • authconf
    • iptables
    • dhcp
    • hosts
    • named
    • resolv
    • sendmail
    • procmail
    • squirrelmail
    • mailman
    • dovecot
    • httpd
    • subversion
    • mysql
    • services
  • copy dns table (to include ip modems)
  • copy /m1 (user home directories)
  • copy /etc/fetchmailrc and set up fetchmail
  • migrate ldap database (Migrating LDAP Users and Passwords to a Clean 10.4 Server)
  • copy /m0/cbiweb
  • copy /m0/mapadapt
  • migrate mysql databases
  • copy /m0/squirrelmail
  • copy /m0/svn
  • copy /m0/thm

Make sure that /etc/nsswitch.conf has ldap set in the following lines:
passwd:     files ldap
shadow:     files ldap
group:      files ldap

Niall's notes

  • copy /etc/group
  • copy /etc/exports [NFS]

RAID mirroring takes for-frikkin-ever, may want to wait for that to complete before copying previous data over to new drives.

Post-upgrade notes

Other things to consider setting up after upgrade:

To get subversion working, had to add: 

AuthBasicProvider ldap
AuthzLDAPAuthoritative off

to etc/subversion-httpd.conf

To get bind working:

  • un-chroot it (comment out ROOTDIR=/var/named/chroot in /etc/sysconfig/named)
  • create /etc/named.conf from /etc/named.caching-nameserver.conf (see diff)
  • What does it take to setup bind to work inside of chroot?

mapadapt needs to be recompiled - don't know where the source is

/etc/dovecot.conf 

userdb ldap {
    # Path for LDAP configuration file, see doc/dovecot-ldap-example.conf
    args = /m0/sysadmin/etc/dovecot-ldap.conf
  }

passdb ldap {
    # Path for LDAP configuration file, see doc/dovecot-ldap-example.conf
    args = /m0/sysadmin/etc/dovecot-ldap.conf
  }

instead of auth_userdb = ldap /m0/sysadmin/etc/dovecot-ldap.conf

To get NFS working had to set specific NFS port numbers in /etc/sysconfig/nfs: 

# NFS port numbers
LOCKD_TCPPORT=10000
LOCKD_UDPPORT=10001
STATD_PORT=10002
STATD_OUTGOING_PORT=10003
MOUNTD_PORT=10004
RQUOTAD_PORT=10005

Disable selinux in /etc/selinux/config, make sure line says SELINUX=disabled. Restart.

Change UID minimum in /etc/pam.d/system-auth-ac to be 100 instead of 500. Older account userids (<= 500) were unable to login.

Page last modified on August 31, 2007, at 07:18 AM