Skip to content

chotee/closetbox

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

53 Commits
ansible
ansible
 
 
bin
bin
 
 
contrib
contrib
 
 
.gitmodules
.gitmodules
 
 
README.rst
README.rst
 
 
install.py
install.py
 
 
settings.yml
settings.yml
 
 
settings_template.ini
settings_template.ini
 
 

Repository files navigation

Closet Box

Scripts and setup for getting running our own online-services.

Goals

  1. One command installation on different hardware.
  2. Decent security, while still maintaining normal functionally.
  3. Use the services directly or as the basis for further configuration.

Software and Technology

Services

Infrastructure

  • The operating system is Debian (A GNU/Linux distribution)
  • Ansible for the installation process.
  • Nginx lightweight webserver
  • NTP client for stable time reference

Security and hardening

  • Fail2ban to hinder bruteforcing user passwords

Deploying

Closetbox can either be deployed directly on the machine that will run the services or it is possible to deploy from a remote machine.

In either case, a user closetbox is added to the system. This user has administrative access to the machine and a full copy of the Closetbox code in it's homedir.

Deploying Closetbox Locally

To install a new closetbox on the closetbox itself. You start out being root and do:

# wget -qO - https://raw.github.com/chotee/closetbox/master/bin/bootstrap_local.sh | bash

or, a shorter version, to save typing -:

# wget -qO - https://tinyurl.com/ocmra2r | bash

This will add a "closetbox" user that installs all of the magic.

If you are uncomfortable with running random scripts as root, you can also install Git, clone the repository:

$ git clone https://github.com/chotee/closetbox.git

and run closetbox/bin/bootstrap_local.sh . This will do the same installation but all of the code is available for review.

Deploying Closetbox Remotely

In the case you have multiple machines to deploy or want to do future service on machines from one central location, you can also do a remote deployment. An sshd server should be already on the target machine.

To do this, do the following:

$ git clone https://github.com/chotee/closetbox.git # Clone the repository
$ mkdir closetbox/keys # make a directory for the remote administration key material.
$ closetbox/bin/bootstrap_remote.sh # Run once per machine to install.

bootstrap_remote.sh will ask for you for the hostname/IP address and root password of the machine. After installation administrative access can be gained by using the keys in closetbox/keys . Each installed machine has it's own administrative keypair. The keys are named after the hostname of the remote machine.

Administrative access to a machine can be obtained via:

$ ssh -i closetbox/keys/postbox_ecdsa [email protected] # access machine named postbox on 192.168.122.108

Deploying from an alternative repository

The default code repository for closetbox is https://github.com/chotee/closetbox.git . However, if you have want to

About

Installation files for the closetbox machines.

Resources

Readme
Activity

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages