MAG's Internet Services Estate

From Motorcycle Action Group Wiki
Revision as of 15:41, 7 December 2015 by Meredith (talk | contribs) (Created page with "== Introduction == Over the last decade and a half, MAG has built up a number of customised services for use by and on behalf of the members to improve our internal and exter...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Introduction

Over the last decade and a half, MAG has built up a number of customised services for use by and on behalf of the members to improve our internal and external communications and to power our campaigns. This is a brief summary of what those services are and some superficial details of how they are put together.

Founding Principles

Covered more fully in the page Why Self Host in essence MAG made a large effort to ensure that the bare minimum of outside organisations have the power to shut down all or part of MAG's online operations. There will always be external entities who can do this, but the effort is to minimise the number of these and the potential fallout if they do.

It is achieved by make all our main services follow this line:

  • Open source software used

Open source software does not need any form of license so cannot be remotely switched off if MAG is too skint to pay the license renewal

  • On MAG's own equipment

Hardware is getting cheaper and cheaper. If we only use machines wholly owned by MAG, they cannot be repossessed if we don't keep up the payments.

  • On MAG's own premises

The principle here is that the primary copy of any data is to be held on a MAG machine on MAG's premises. We already have servers running in 3rd party hosting centres, but they will be holding secondary copies of the information, the primary copy being held at central. This way if the deal with the hosting centre goes pear shaped and the summarily switch us off, the primary copy can be used to bring the service back up. (NB This is the intent but in some cases we have not yet closed the loop).

Main Servers

central.mag-uk.org

This is now a rather elderly machine running a rather elderly version of Linux. The services still running on this machie are slowly being split off and moved to more modern hardware and OS versions on the external hosting site in Cardiff.

fred.mag-uk.org

This is a modern tower server with sufficient power to run several virtual machines. Fred's main purpose is to be a virtual machine server, this way the admins can connect to the consoles of the actual function servers for remote, low level maintenance. The current crop of servers on Fred are:

ldap.mag-uk.org

This machine contains the MAG user account database. it is from this machien that all the other new generation MAG servers get their MAG usernames and passwords. This way once the member has a username and password, they can use it for all MAG's new generation services. If they change it, it changes for all the services. This avoids the situation of having to maintain dozens of separate username/password lists with the user confusion and admin workload that this would represent.

webhost.mag-uk.org

Most of the MAG web sites are still running on the central server. Webhost is the new platform to which these sites will be migrated. The intent is that they will all run on this machine in the end.

Services

Email

This is currently done by central.mag-uk.org but will eventually migrate to a new mail server on fred.mag-uk.org.

Role Based Email Aliases

This is currently done by central.mag-uk.org but will eventually migrate to a new mail server on fred.mag-uk.org.

Local and Regional Web Sites

This is currently done by central.mag-uk.org but is currently being migrated to webhost.mag-uk.org.

There are several sites already there, inclusing the existing main web site http://www.mag-uk.org and the yet to be published new main web site TBD.

wiki.mag-uk.org

This is a new generation service and is hosted on webhost.mag-uk.org

It allows any member thus enabled to add and maintain pages of information for use by the members. This page as a example.

adminwiki.mag-uk.org

This is a sister service to wiki.mag-uk.org but is only accessable and editable by nominated admins. It is for information that would be of use to those trying to break into our systems and that would be of little or no use to the general membership. It is hosted alongside wiki.mag-uk.org on webhost.mag-uk.org