[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[EP-tech] Shifting eprints 3.4.3 from RHEL7 to RHEL8
Hi Chris,
Yes, my EPrints SELinux module does seem to be forever expanding.? A lot
of that is down more to monitoring (i.e. NRPE) and other stuff I want to
do.? I am happy to share if anyone is interested.? One of the odd things
I have at the moment is that Apache keeps saying it needs
self:capability for net_admin.? I am not sure why Apache needs to be
able to touch network configuration.
I have written some Ansible playbooks for automation but those are
mainly to apply improvements/fixes on top of the initial Rocky Linux 8
image template, which already has EPrints installed. I then use this
image template to build new EPrints VMs.
Although I still maintain and produce the EPrints RPM and Deb packages
for new versions of EPrints 3.4, I am not a big fan of using them to
upgrade production repositories. EPrints is not really the sort of
software, (because it can be extensively configured), which can be
upgraded without there likely being issues.? This is because you cannot
account for every configuration scenario.? So even if vanilla EPrints is
tested and upgrades nicely, that may not be the case for your
repository.? An initial install using a standalone RPM, is easier than
installing from source and at least does not leave you at risk of
upgrading through the package manager without realising.? However,
upgrading in place is quite difficult.? I would always advise upgrading
a pre-production instance of your EPrints repository to make sure you
won't have any issues or at least have a plan if you do, before
upgrading your production repository.
Regards
David Newman
On 23/05/2022 9:37 am, Christopher Gutteridge via Eprints-tech wrote:
>
> Oh, I've recently done a puppet setup for EPrints on RHEL8. That's a
> server automation tool. It included all the faff for SELinux.
>
> The interesting bits are in manifests/ and templates/
>
> manifests/init.pp sets up the server, and repository.pp is a pattern
> to set up each repository, with the config from a git repository.
>
> the EPrints RPM and the default flavour are bundled as they were a
> pain in the upgrade.
>
>
> On 23/05/2022 09:08, Jens Witzel via Eprints-tech wrote:
>> *CAUTION:* This e-mail originated outside the University of Southampton.
>>
>> Dear EP-Tech Group
>>
>> Does anyone here have experience with the transition from RHEL7 to
>> RHEL8 and the consequences of the new security policy in combination
>> with Eprints3.4? What pitfalls are to be expected?
>>
>> Every hint is welcome
>> Thanks
>> Jens
>>
>> --
>> Jens Witzel
>> Zentrale Informatik
>> Universit?t Z?rich
>> Stampfenbachstrasse 73
>> CH-8006 Z?rich
>>
>> mail: jens.witzel at uzh.ch
>> phone: +41 44 63 56777
>> https://eur03.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.zi.uzh.ch%2F&data=05%7C01%7Ceprints-tech%40ecs.soton.ac.uk%7Ce9e50d9742b1496d842b08da3ca099d4%7C4a5378f929f44d3ebe89669d03ada9d8%7C0%7C0%7C637888957706735557%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=QsHfXB6QlpOvvF4kccz2tmTEOZv1OLeVrUjzn7M%2Bmco%3D&reserved=0
>>
>>
>> *** Options:http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
>> *** Archive:https://eur03.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.eprints.org%2Ftech.php%2F&data=05%7C01%7Ceprints-tech%40ecs.soton.ac.uk%7Ce9e50d9742b1496d842b08da3ca099d4%7C4a5378f929f44d3ebe89669d03ada9d8%7C0%7C0%7C637888957706735557%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=ZqK1DYbVP22tkz%2FSpYOgiyhVSle4lB9PXELNnqZDxjM%3D&reserved=0
>> *** EPrints community wiki:https://eur03.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwiki.eprints.org%2F&data=05%7C01%7Ceprints-tech%40ecs.soton.ac.uk%7Ce9e50d9742b1496d842b08da3ca099d4%7C4a5378f929f44d3ebe89669d03ada9d8%7C0%7C0%7C637888957706735557%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=udSlNWyOhIgAP11c07eyyNEEaPemW9wDh0iqul0h0h0%3D&reserved=0
> --
> Christopher Gutteridge<totl at soton.ac.uk>
> You should read our team blog athttp://blog.soton.ac.uk/webteam/
> (I live near Highfield Campus, so in person, outdoor and socially distanced meetings are an option)
>
> *** Options:http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
> *** Archive:https://eur03.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.eprints.org%2Ftech.php%2F&data=05%7C01%7Ceprints-tech%40ecs.soton.ac.uk%7Ce9e50d9742b1496d842b08da3ca099d4%7C4a5378f929f44d3ebe89669d03ada9d8%7C0%7C0%7C637888957706735557%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=ZqK1DYbVP22tkz%2FSpYOgiyhVSle4lB9PXELNnqZDxjM%3D&reserved=0
> *** EPrints community wiki:https://eur03.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwiki.eprints.org%2F&data=05%7C01%7Ceprints-tech%40ecs.soton.ac.uk%7Ce9e50d9742b1496d842b08da3ca099d4%7C4a5378f929f44d3ebe89669d03ada9d8%7C0%7C0%7C637888957706735557%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=udSlNWyOhIgAP11c07eyyNEEaPemW9wDh0iqul0h0h0%3D&reserved=0
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/eprints-tech/attachments/20220523/c31abe98/attachment-0001.html