7,166
edits
Ubuntu 10.04 LTS (Lucid Lynx) AMI: Difference between revisions
→古い ec2-init からいただき
| (21 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
'''EOLです''' | |||
= 雑多なメモ = | = 雑多なメモ = | ||
| Line 8: | Line 6: | ||
== はじめの第一歩 == | == はじめの第一歩 == | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
echo "Asia/Tokyo" | sudo tee /etc/timezone | echo "Asia/Tokyo" | sudo tee /etc/timezone | ||
sudo dpkg-reconfigure --frontend noninteractive tzdata | sudo dpkg-reconfigure --frontend noninteractive tzdata | ||
| Line 83: | Line 81: | ||
ec2-set-hosts | ec2-set-hosts | ||
<syntaxhighlight lang="python" enclose=" | <syntaxhighlight lang="python" enclose="div"> | ||
#!/usr/bin/python | #!/usr/bin/python | ||
# | # | ||
| Line 116: | Line 114: | ||
my_hostname = os.popen("/bin/hostname -s").read().rstrip() | my_hostname = os.popen("/bin/hostname -s").read().rstrip() | ||
# replace the ubuntu hostname in /etc/hosts | # replace the ubuntu hostname in /etc/hosts | ||
mp = {'localipv4' : my_ip, 'hostname' : my_hostname, 'fqdn' : my_fqdn} | mp = {'localipv4' : my_ip, 'hostname' : my_hostname, 'fqdn' : my_fqdn} | ||
t = Template(file="/usr/local/etc/bind/templates/hosts.tmpl", searchList=[mp]) | t = Template(file="/usr/local/etc/bind/templates/hosts.tmpl", searchList=[mp]) | ||
| Line 141: | Line 139: | ||
ec2-set-dns-zone | ec2-set-dns-zone | ||
(内部 DNS 設定用)(aptitude install python-ipy で IPy 導入前提) | (内部 DNS 設定用)(aptitude install python-ipy で IPy 導入前提) | ||
<syntaxhighlight lang="python"> | <syntaxhighlight lang="python" enclose="div"> | ||
#!/usr/bin/python | #!/usr/bin/python | ||
# | # | ||
| Line 296: | Line 294: | ||
mod_sed の書き換えルールはこんな感じかな | mod_sed の書き換えルールはこんな感じかな | ||
<pre> | <pre> | ||
<IfModule mod_sed.c> | <IfModule mod_sed.c> | ||
AddOutputFilter Sed html | AddOutputFilter Sed html | ||
OutputSed "s/www\.example\.com/test.example.com/g" | OutputSed "s/www\.example\.com/test.example.com/g" | ||
</IfModule> | </IfModule> | ||
</pre> | </pre> | ||
| Line 402: | Line 400: | ||
# | # | ||
net.core.netdev_max_backlog=30000 | net.core.netdev_max_backlog=30000 | ||
net.core.somaxconn= | net.core.somaxconn=65535 | ||
net.ipv4.tcp_max_orphans=262144 | net.ipv4.tcp_max_orphans=262144 | ||
net.ipv4.tcp_max_syn_backlog= | net.ipv4.tcp_max_syn_backlog=65535 | ||
net.ipv4.tcp_fin_timeout=3 | net.ipv4.tcp_fin_timeout=3 | ||
net.ipv4.tcp_no_metrics_save=1 | net.ipv4.tcp_no_metrics_save=1 | ||
| Line 479: | Line 477: | ||
== apparmor == | == apparmor == | ||
普通じゃない設定をしたら、整合性を合わせないといけない | 普通じゃない設定をしたら、整合性を合わせないといけない | ||
<syntaxhighlight> | <syntaxhighlight lang="text" enclose="div"> | ||
/ebs/var/lib/mysql/ r, | /ebs/var/lib/mysql/ r, | ||
/ebs/var/lib/mysql/** rwk, | /ebs/var/lib/mysql/** rwk, | ||
| Line 489: | Line 487: | ||
== 定番パッケージ == | == 定番パッケージ == | ||
=== cron-apt / unattended-upgrades === | === cron-apt / unattended-upgrades === | ||
<syntaxhighlight> | <syntaxhighlight lang="text" enclose="div"> | ||
sudo aptitude install cron-apt | sudo aptitude install cron-apt | ||
edit ..... | edit ..... | ||
| Line 499: | Line 497: | ||
cron-apt から unattended-upgrades に換えましたが、やっぱり微妙に使い勝手が悪いので、また cron-apt を使うことにしました。 | cron-apt から unattended-upgrades に換えましたが、やっぱり微妙に使い勝手が悪いので、また cron-apt を使うことにしました。 | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
sudo aptitude install postfix | sudo aptitude install postfix | ||
sudo aptitude install mailx | sudo aptitude install mailx | ||
| Line 539: | Line 537: | ||
=== いろいろ === | === いろいろ === | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
sudo aptitude install php-pear | sudo aptitude install php-pear | ||
sudo aptitude install apache2-prefork-dev | sudo aptitude install apache2-prefork-dev | ||
| Line 550: | Line 548: | ||
== Zimbra 系メモ == | == Zimbra 系メモ == | ||
Sending Mail from Terminal (optional) | Sending Mail from Terminal (optional) | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
wget http://ubuntu.lnix.net/misc/mta-dummy/mta-dummy_1.0_all.deb | wget http://ubuntu.lnix.net/misc/mta-dummy/mta-dummy_1.0_all.deb | ||
dpkg -i mta-dummy_1.0_all.deb | dpkg -i mta-dummy_1.0_all.deb | ||
| Line 560: | Line 558: | ||
== WordPress 系メモ == | == WordPress 系メモ == | ||
とりあえずパッケージでいれて設定だけいただく | とりあえずパッケージでいれて設定だけいただく | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
sudo aptitude -y install wordpress | sudo aptitude -y install wordpress | ||
sudo /bin/bash /usr/share/doc/wordpress/examples/setup-mysql -n WORDPRESSDBNAME HOSTNAME | sudo /bin/bash /usr/share/doc/wordpress/examples/setup-mysql -n WORDPRESSDBNAME HOSTNAME | ||
| Line 572: | Line 570: | ||
node | node | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
sudo aptitude install munin-node | sudo aptitude install munin-node | ||
sudo aptitude install munin-plugins-extra | sudo aptitude install munin-plugins-extra | ||
| Line 584: | Line 582: | ||
server | server | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
sudo aptitude install munin | sudo aptitude install munin | ||
</syntaxhighlight> | </syntaxhighlight> | ||
お手軽 サービス・死活監視 | お手軽 サービス・死活監視 | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
sudo aptitude install monit | sudo aptitude install monit | ||
</syntaxhighlight> | </syntaxhighlight> | ||
| Line 639: | Line 637: | ||
Host * | Host * | ||
#ForwardAgent yes | #ForwardAgent yes | ||
TCPKeepAlive | TCPKeepAlive no | ||
ServerAliveInterval | ServerAliveInterval 60 | ||
ServerAliveCountMax | ServerAliveCountMax 15 | ||
</pre> | </pre> | ||
| Line 648: | Line 646: | ||
[http://www.varnish-cache.org/installation/ubuntu Installation on Ubuntu] | [http://www.varnish-cache.org/installation/ubuntu Installation on Ubuntu] | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
echo "deb http://repo.varnish-cache.org/ubuntu/ lucid varnish-2.1" | sudo tee /etc/apt/sources.list.d/varnish.list | echo "deb http://repo.varnish-cache.org/ubuntu/ lucid varnish-2.1" | sudo tee /etc/apt/sources.list.d/varnish.list | ||
wget -qO - http://repo.varnish-cache.org/debian/GPG-key.txt | sudo apt-key add - | wget -qO - http://repo.varnish-cache.org/debian/GPG-key.txt | sudo apt-key add - | ||
| Line 657: | Line 655: | ||
あんちょくな daily backup script | あんちょくな daily backup script | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
#!/bin/sh | #!/bin/sh | ||
| Line 754: | Line 752: | ||
MySQL を noninteractive でインストール。(対話型でパスワードを聞かれるのを自動設定する) | MySQL を noninteractive でインストール。(対話型でパスワードを聞かれるのを自動設定する) | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
echo 'mysql-server-5.1 mysql-server/root_password password PASSWORD' | sudo debconf-set-selections | echo 'mysql-server-5.1 mysql-server/root_password password PASSWORD' | sudo debconf-set-selections | ||
echo 'mysql-server-5.1 mysql-server/root_password seen true' | sudo debconf-set-selections | echo 'mysql-server-5.1 mysql-server/root_password seen true' | sudo debconf-set-selections | ||
| Line 775: | Line 773: | ||
'''☆環境により boot しない場合有り 注意☆''' | '''☆環境により boot しない場合有り 注意☆''' | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
sudo e2label /dev/sda1 | sudo e2label /dev/sda1 | ||
ls -al /dev/disk/by-label | ls -al /dev/disk/by-label | ||
</syntaxhighlight> | </syntaxhighlight> | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
sudo e2label /dev/sda1 cloudimg-rootfs | sudo e2label /dev/sda1 cloudimg-rootfs | ||
sudo e2label /dev/sdp | sudo e2label /dev/sdp no-rootfs | ||
</syntaxhighlight> | </syntaxhighlight> | ||
という手もあるんだが... root device = boot device = /dev/sda1 に単純化したほうが事故が少ないと思う。 | という手もあるんだが... root device = boot device = /dev/sda1 に単純化したほうが事故が少ないと思う。 | ||
| Line 812: | Line 810: | ||
/etc/security/limits.d/mylimits.conf | /etc/security/limits.d/mylimits.conf | ||
<pre> | <pre> | ||
* | * soft core 0 | ||
root | * hard core 0 | ||
root soft core 0 | |||
root hard core 0 | |||
* soft nofile 524288 | |||
* hard nofile 524288 | |||
root soft nofile 524288 | |||
root hard nofile 524288 | |||
* soft nproc unlimited | |||
* hard nproc unlimited | |||
root soft nproc unlimited | |||
root hard nproc unlimited | |||
* soft stack unlimited | |||
* hard stack unlimited | |||
root soft stack unlimited | |||
root hard stack unlimited | |||
* soft memlock unlimited | |||
* hard memlock unlimited | |||
root soft memlock unlimited | |||
root hard memlock unlimited | |||
* soft as unlimited | |||
* hard as unlimited | |||
root soft as unlimited | |||
root hard as unlimited | |||
</pre> | </pre> | ||
| Line 904: | Line 924: | ||
/etc/apt/apt.conf.d/50unattended-upgrades.dpkg-old 削除 | /etc/apt/apt.conf.d/50unattended-upgrades.dpkg-old 削除 | ||
/etc/init/ureadahead.conf.dpkg-new 削除 | /etc/init/ureadahead.conf.dpkg-new 削除 | ||
aptitude install acpid | (aptitude install acpid) HVMでないなら不要 | ||
aptitude install whoopsie | (aptitude install whoopsie) 不要! | ||
aptitude install fonts-ubuntu-font-family-console | aptitude install fonts-ubuntu-font-family-console | ||
aptitude install linux-image-extra-virtual | |||
/etc/apt/preferences.d/backports 編集 (Pin: release a=precise-backports) | /etc/apt/preferences.d/backports 編集 (Pin: release a=precise-backports) | ||
/etc/munin/plugins の ディスク名替える | /etc/munin/plugins の ディスク名替える | ||
(qw(aaa bbb)) 替える | (qw(aaa bbb)) 替える | ||
/etc/default/whoopsie で false | |||
</pre> | </pre> | ||
お掃除 | お掃除 | ||
<pre> | <pre> | ||
aptitude purge whoopsie | |||
aptitude purge apport apport-symptoms python-apport | |||
aptitude remove update-motd | aptitude remove update-motd | ||
aptitude remove radeontool | aptitude remove radeontool | ||
| Line 1,004: | Line 1,028: | ||
== Opscode chef recipes == | == Opscode chef recipes == | ||
<syntaxhighlight> | <syntaxhighlight lang="bash" enclose="div"> | ||
echo 'deb http://apt.opscode.com/ lucid-0.10 main' | sudo tee /etc/apt/sources.list.d/opscode.list | echo 'deb http://apt.opscode.com/ lucid-0.10 main' | sudo tee /etc/apt/sources.list.d/opscode.list | ||
wget -qO - http://apt.opscode.com/packages@opscode.com.gpg.key | sudo apt-key add - | wget -qO - http://apt.opscode.com/packages@opscode.com.gpg.key | sudo apt-key add - | ||