diff options
| author | Florian Weimer <fw@deneb.enyo.de> | 2009-10-11 19:38:42 +0000 |
|---|---|---|
| committer | Florian Weimer <fw@deneb.enyo.de> | 2009-10-11 19:38:42 +0000 |
| commit | b6781c9cc011e50b2941922595ce4cd4fa2afbd6 (patch) | |
| tree | a83962412aa493a5d13d8e850efe3fa76dcaed9e /doc | |
| parent | a283debda196c7c09a00843232f721a85a8407c8 (diff) | |
Documentation for the tracker setup on soler.debian.org
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@12994 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/soler.txt | 57 |
1 files changed, 57 insertions, 0 deletions
diff --git a/doc/soler.txt b/doc/soler.txt new file mode 100644 index 0000000000..835473c124 --- /dev/null +++ b/doc/soler.txt @@ -0,0 +1,57 @@ +Tracker setup on soler.debian.org +================================= + +(This is internal documentation, in case things need to be fixed. +It is not relevant to day-to-day edting tasks.) + +Relevant files and directories +------------------------------ + +The tracker runs under the user ID "sectracker". Most of its files +are stored in the directory /org/security-tracker.debian.org/website: + + bin/cron invoked by cron once every minute + bin/cron-hourly invoked by cron once every hour + bin/cron-daily invoked by cron once every day + bin/read-and-touch invoked by ~/.procmailrc + bin/start-daemon invoked by cron at reboot + + secure-testing Subversion checkout + secure-testing/bin/* main entry points, called bin bin/cron + secure-testing/stamps/* files which trigger processing by bin/cron + +~sectracker/.procmailrc invokes bin/read-and-touch to create stamp +files, which are then picked up by bin/cron. This is done to +serialize change events in batches (e.g., commits originated from +git-svn). <sectracker@security-tracker.debian.org> is subscribed to +these mailing lists to be notified of changes: + + <debian-security-announce@lists.debian.org> + <secure-testing-commits.lists.alioth.debian.org> + +The crontab of the "sectracker" user is set up such that the scripts +are invoked as specified above. + +Web server +---------- + +80/TCP is handled by Apache. The Apache configuration is here: + + /org/security-tracker.debian.org/etc/apache.conf + +mod_proxy is used to forward requests to the actual server which +listens on 127.0.0.1:25648 and is started by the +/org/security-tracker.debian.org/website/bin/start-daemon script. + +debsecan metadata +----------------- + +/org/security-tracker.debian.org/website/bin/cron contains code which +pushes updates to secure-testing-master, using rsync. + +Code updates +------------ + +Updates to the Subversion checkout only affect the directory +/org/security-tracker.debian.org/website/secure-testing/data. +Code changes need to be applied manually, using "svn update". |