Skip to content

Deployment ideas

Jump to bottom
perrygeo edited this page Feb 16, 2013 · 2 revisions

OTHER TODO

  • test on linode
  • webservice to provide the big data

TODO First, need to bootstrap the system by

  • set up ssh access scp ~/.ssh/id_rsa.pub user@example.com:/home/user/.ssh/uploaded_key.pub
  • use fabric to copy over puppet files into /tmp/vagrant-puppet
  • use fabric to start puppet

Puppet then proceeds to

  • Add packages and install necessary software
  • TODO Add nginx, gunicorn, celeryd, redis, etc to this
  • Adds a standard user account
  • Sets up user accounts and file permissions exactly as the vagrant box

Test suite

Vagrant:

  • TODO specify url
  • TODO memory specs
  • TODO have dev vs test settings

Additional considerations

Puppet could so some additional security checks depending on the base system

  • (Optionally) Restricts SSH to only Public Key Authorization
  • Disables root login via SSH
  • Disables SSH access to anyone not in sshusers group.
  • Installs & Configures Sudo to allow sudo access to the certain group.
Clone this wiki locally