Switched DNS to H2, copied logs, switched it back to H3, pasted logs. Reset wordpress container.

Set up docker config on H3, started containers, restored Mediawiki from database backup, verified all machines working and available. Wrote new backup script to include all of docker and added cron job to automate daily backups. Switched DNS for "wiki" to the H3 wiki.

Working with Ubuntu 24.04 / docker rootless / https config and hit a stopping point with Ubuntu's apparmor kernels. Switched to Debian 12 and it all installed and configured easily. Started upload and configuration of docker.

Decision made to switch OS. Settled on Ubuntu 24.04. Verified backups, started server reload. Started uploads to server.

Continued attempting "rootless" docker install on server, ran into UDEV problems, then other problems due to operating system issues. Checked system backups to cloud, copied files from server to my laptop. Updating letsencrypt certs.

Rebooted H3 and got it going. Restored the "rootful" docker services. Created new database backup, retention and restore scripts and cron schedules. Tested the full backup and documented it all in Tom Log below.

Continued work in early morning, throughout the day - with ChatGPT. It delved into network firewall rules and ended up putting the server unresponsive. I notified Marcin, switched "wiki" back to H2 and went to bed, very tired.

Marcin: Security assessment for Docker servers. Started switch to "rootless" environment, ended up trashing database. Search for most current version.

(belated entry for 2025-05-15) call with Tom & Marcin, Tom's ansible training

Updated and enabled the “WikiEdit” extension.

Modified backup script to include everything for the docker installation. Updated and enabled the “WikiEdit” extension, per Marcin.

Modified backup script to include everything for the docker installation. Updated and enabled the “WikiEdit” extension, per Marcin.

Switched DNS and made the new Mediawiki service the primary. Reclaimed some disk space, fixed Iframe extenison, ParserFuncitons extension and "File Upload" feature. Tweaked the docker-backup script and used it to make a backup of the docker containers.

(belated entry for 2025-05-31) Tom shared ose keepass handoff. logs & billing.

(belated entry for 2025-05-29) Tom shared ose keepass handoff

(belated entry for 2025-06-25) Tom shared ose keepass handoff

(belated entry for 2025-05-02) phpList, postfix, email delivery investigations

(belated entry for 2025-05-01) email, munin

Started upgrade of Mediawiki upgrade Version 1.7 incrementally to version 1.39. This process mostly affected the database. Each upgrade required installing the newer software and performing any necessary database upgrades - from upgrade scripts, packaged with the new version.

backlog

Got the certificate issue worked out - apparently, the docker can't process symbolic links and had to use "hard" file references.

Hours of dialog with ChatGPT trying to implement some security features, but ran into problems that went past midnight. Will continue tomorrow.

Created secure passwords for the database root, wiki and wordpress users. Put them in environment variables, updated the passwords in the database and tested for functionality.

Much dialog with ChatGPT about setting up this server. Re-configured for shared db and using Docker builds rather than Turnkey. Many other tweaks as well. Got the initial Wordpress service working and notified Marcin / Catarina.

backlog

Floor plans for 1-story hous

Campus design

Floor plans for 1 story house and campus dorm

backlog

Got info from ChatGPT and installed docker -> Turnkey appliances for Wordpress and Mediawiki. Fetched images, extensions and Localsettings in preparation for migrating all of mediawiki.

backlog

Installed "restic" software, did a backup and finally got the keepass database decrypted and opened.

Securing access to hetzner2 and setting up SSH keys for Marcin to access servers. Some progress made on keepass, but couldn't open the database.

backlog

Working with LetsEncrypt site and "certbot" program to generate certs to make the website work.

(belated entry for 2025-04-30) hetzner2 sda replacement

(belated entry for 2025-05-27) github, wiki logs, aws follow-up

Having SSL issues and other isuses. Resolved most, but still have to get the certs fixdd.

Diving into problem with Wordpress not visible. Studying various components, testing

Configure dev WP site for Catarina.

backlog

Update kitchen BoM and budget

Created database instance and user for new Wordpress install. Created ansible templates for its deployment. Created target directories for the deployment.

backlog

Work with Catarina to get Dreamhost / Wordpress site working. Attempted to get credentials, but all keepass data unaccessible.

backlog

As Hetzner is largely inacessible, Catarina starts website on Dreamhost, but can't access as DNS hosted on Cloudflare, credentials in hetzner2:/etc/keepass and we can't see them as yet.

Enabled sftp on hetzner3 to fix ansible connections.

Fixed ansible errors with scp and sftp.

backlog