https://wiki.somakeit.org.uk/api.php?action=feedcontributions&feedformat=atom&user=BrackenSoMakeIt - User contributions [en-gb]2026-06-04T05:34:46ZUser contributionsMediaWiki 1.39.11https://wiki.somakeit.org.uk/index.php?title=Members&diff=108Members2022-11-30T23:05:52Z<p>Bracken: fix urk</p>
<hr />
<div>Members is the Digital Ocean droplet hosting [https://members.somakeit.org.uk members.somakeit.org.uk].<br />
<br />
== Setup ==<br />
These are the steps taken to set it up when Scorpia @ I replaced the much more expensive droplet.<br />
<br />
Made new droplet: 46.101.29.241 ubuntu 22.04<br />
<br />
=== Created user accounts ===<br />
* tyler<br />
* bracken <br />
* other ssh keys left in root auth keys for now (unusable because PermitRootLogin is off) <br />
* dpslwk so Matt (HMS author) can help <br />
* chris18890 as existing admin<br />
<br />
=== Server hardening ===<br />
* Disable PermitRootLogin for ssh<br />
* Enabled UFW with allow for port 22 globaly<br />
* UFW allow 80 and 443 globaly<br />
* UFW allow 1194/udp globally for OpenVPN<br />
* UFW allow 3306 from 10.8.0.0/24 for doors to access database over encrypted tunnel<br />
* Copied letsencrypt files from the old server, installed certbot with apt, dry-ran a renew sucessfully<br />
<br />
=== Mysql ===<br />
* installed mariadb-server<br />
* Copied the live database to the new server, needs to be re-done clean before golive.<br />
* Copied clean database over at approx 17:00.<br />
<br />
=== Redis ===<br />
* Apt-get install redis<br />
* set requirepass<br />
<br />
=== Nginx ===<br />
* Installed nginx<br />
<br />
=== HMS ===<br />
* created hms user<br />
* checked out hms git repo<br />
* installed php php-redis php-curl php-xml<br />
* installed composer<br />
* curl -sS https://getcomposer.org/installer | php<br />
* sudo mv composer.phar /usr/local/bin/composer<br />
* composer install<br />
* composer update<br />
<br />
==== attempt 2 with old php ====<br />
* sudo apt install software-properties-common<br />
* sudo add-apt-repository ppa:ondrej/php -y<br />
* sudo apt install php7.4 php7.4-redis php7.4-curl php7.4-xml php7.4-zip php7.4-sql php7.4-mysql php7.4 php7.4-fpm php7.4-mbstring<br />
* sudo update-alternatives --config php<br />
* recheckout hms<br />
* add .env file<br />
* composer update<br />
* run artisan commands from vagrant script (some may have caused issues)<br />
* add crontab as set by vagrant script<br />
* add hms-7.4.conf in /etc/php/7.4/fpm/pool.d/<br />
<br />
* run php artisan config:cache then php artisan hor:ter<br />
<br />
=== NPM ===<br />
* install node 14 https://github.com/nodesource/distributions/blob/master/README.md<br />
* https://unix.stackexchange.com/questions/627635/upgrading-nodejs-on-ubuntu-how-to-fix-broken-pipe-error<br />
* copy npm rc<br />
* add font awsome token<br />
* npm install<br />
* add resources/sass/_variables_somakeit.scss<br />
* npm run<br />
<br />
=== Other ===<br />
* install laravel-echo-server<br />
* add systemd for echo server and horizon<br />
* copy over oauth keys<br />
* Add new box IP to mailgun approved IPs<br />
<br />
=== OpenVPN (for the doors) ===<br />
* Installed using https://github.com/angristan/openvpn-install and (https://github.com/angristan/openvpn-install/issues/1030).<br />
* Created a client for kong and added route-nopull to make it a split tunnel config.<br />
* Created a client for extDoorPi added route-nopull<br />
* Installed openvpn configs on both pis, tested and door access working.<br />
<br />
== Log ==</div>Brackenhttps://wiki.somakeit.org.uk/index.php?title=Members&diff=107Members2022-11-30T23:04:24Z<p>Bracken: Created page with "Members is the Digital Ocean droplet hosting members.somakeit.org.uk. == Setup == These are the steps taken to set it up when Scorpia @ I replaced the much more expensive..."</p>
<hr />
<div>Members is the Digital Ocean droplet hosting [[members.somakeit.org.uk]].<br />
<br />
== Setup ==<br />
These are the steps taken to set it up when Scorpia @ I replaced the much more expensive droplet.<br />
<br />
Made new droplet: 46.101.29.241 ubuntu 22.04<br />
<br />
=== Created user accounts ===<br />
* tyler<br />
* bracken <br />
* other ssh keys left in root auth keys for now (unusable because PermitRootLogin is off) <br />
* dpslwk so Matt (HMS author) can help <br />
* chris18890 as existing admin<br />
<br />
=== Server hardening ===<br />
* Disable PermitRootLogin for ssh<br />
* Enabled UFW with allow for port 22 globaly<br />
* UFW allow 80 and 443 globaly<br />
* UFW allow 1194/udp globally for OpenVPN<br />
* UFW allow 3306 from 10.8.0.0/24 for doors to access database over encrypted tunnel<br />
* Copied letsencrypt files from the old server, installed certbot with apt, dry-ran a renew sucessfully<br />
<br />
=== Mysql ===<br />
* installed mariadb-server<br />
* Copied the live database to the new server, needs to be re-done clean before golive.<br />
* Copied clean database over at approx 17:00.<br />
<br />
=== Redis ===<br />
* Apt-get install redis<br />
* set requirepass<br />
<br />
=== Nginx ===<br />
* Installed nginx<br />
<br />
=== HMS ===<br />
* created hms user<br />
* checked out hms git repo<br />
* installed php php-redis php-curl php-xml<br />
* installed composer<br />
* curl -sS https://getcomposer.org/installer | php<br />
* sudo mv composer.phar /usr/local/bin/composer<br />
* composer install<br />
* composer update<br />
<br />
==== attempt 2 with old php ====<br />
* sudo apt install software-properties-common<br />
* sudo add-apt-repository ppa:ondrej/php -y<br />
* sudo apt install php7.4 php7.4-redis php7.4-curl php7.4-xml php7.4-zip php7.4-sql php7.4-mysql php7.4 php7.4-fpm php7.4-mbstring<br />
* sudo update-alternatives --config php<br />
* recheckout hms<br />
* add .env file<br />
* composer update<br />
* run artisan commands from vagrant script (some may have caused issues)<br />
* add crontab as set by vagrant script<br />
* add hms-7.4.conf in /etc/php/7.4/fpm/pool.d/<br />
<br />
* run php artisan config:cache then php artisan hor:ter<br />
<br />
=== NPM ===<br />
* install node 14 https://github.com/nodesource/distributions/blob/master/README.md<br />
* https://unix.stackexchange.com/questions/627635/upgrading-nodejs-on-ubuntu-how-to-fix-broken-pipe-error<br />
* copy npm rc<br />
* add font awsome token<br />
* npm install<br />
* add resources/sass/_variables_somakeit.scss<br />
* npm run<br />
<br />
=== Other ===<br />
* install laravel-echo-server<br />
* add systemd for echo server and horizon<br />
* copy over oauth keys<br />
* Add new box IP to mailgun approved IPs<br />
<br />
=== OpenVPN (for the doors) ===<br />
* Installed using https://github.com/angristan/openvpn-install and (https://github.com/angristan/openvpn-install/issues/1030).<br />
* Created a client for kong and added route-nopull to make it a split tunnel config.<br />
* Created a client for extDoorPi added route-nopull<br />
* Installed openvpn configs on both pis, tested and door access working.<br />
<br />
== Log ==</div>Brackenhttps://wiki.somakeit.org.uk/index.php?title=Kong&diff=105Kong2022-11-30T22:56:43Z<p>Bracken: Created page with "Kong is the raspberry pi guarding the door to the corridor of Unit F. It runs [https://github.com/somakeit/door-controller3 door-controller3]. == Log == * 2022-11-30 The pi..."</p>
<hr />
<div>Kong is the raspberry pi guarding the door to the corridor of Unit F.<br />
<br />
It runs [https://github.com/somakeit/door-controller3 door-controller3].<br />
<br />
== Log ==<br />
* 2022-11-30 The pi works well enough to get 157 days of uptime, the current board's MAC address is b8:27:eb:0b:44:1b</div>Bracken