Network

This contains a description of the network setup and any servers running.

WAN
Bezeq NGN 30Mbps/3Mbps via Bezeqint (username: telavivmakers@014)

Static WAN IP: 82.80.54.64

Also accessible via: space.telavivmakers.org (we also have proper reverse DNS records pointing back to that domain.)

(Phone line number is +972 3 5058210 but is blocked for PSTN usage.)

LAN
TP-Link TL-WR4300 main router (10.81.2.1 / 2001:470:7038:cOf3::1) serving DHCP on 10.81.2.0/24

PPPoE through Netgear VVG2000 VDSL gateway (configured by Bezeq in bridge mode only - it's just a fucking modem).

WLAN

 * SSID TelAvivMakers in the clear (no encryption, use standard precautions)
 * 5Ghz is provided via TelAvivMakers-5Ghz
 * Paranoids can use the WPA-protected TelAvivMakers2 (with password ) but please don't expect your traffic to be private just because it's WPA.

Edimax BR-6428 (10.81.2.138) located behind kitchen counter broadcasting on channel 6

TP-Link TL-WDR4300 located on router board (next to balcony) broadcasting on channel 11 and 5GHz on channel 36

IPv6
Disabled until further notice.

Available through hurricane elctric tunnelbroker.

2001:470:7038::/48 TAMI prefix

2001:470:7038:cOf3::/64 TAMI LAN

2001:470:7038:cOf3::1 WN801ND main router

Internal file server
FTP and big-ass file/media server - coming soon...

Network audio
Meeep - 10.81.2.117 See SoundSetup

RTL-SDR Radio
Using the attached USB dongle you can listen to any radio station with rtl_fm. A proper alias already exists in the .bashrc use syntax:

$ radio 106M  # 106FM $ radio 91.8M # galgalatz

The reception might not be so good, I still need to calibrate tuning errors and setup a nice antenna.

Network printer
There is a network connected Officejet 4500, tested with Windows XP and Fedora 19.

Network scanning
I installed sane and an xinetd service to provide network access to the scanner. However, the xeros_mfp driver of sane fails to detect the device and cheap fixes (adding the USB vendor/device ID) didn't work. Sorry.

Services (aka security holes)
StartSSLNotes - getting a certificate from the Eilat CA.

network camera
motion running on a TP-Link WR703n

mpd
mpd is running on meeep (not mail.lan which is 10.81.2.24 6 7   or mail.local, which also runs an FTP (NOT sftp) server on which the mp3 files are kept. Add to the music collection!)

to restart mpd (for instance to update the list of mp3's that you just uploaded) try updating the database using

mpc update

There is also a web interface for controlling the music played in the space on meeep:

http://meeep.lan/relax

Tor
A tor relay is configured and running

MediaGoblin
We run our own instance at http://mediagoblin.tami.org.il/, installation instructions, InstallingMediaGoblin

Kolab
(Not there yet) InstallingKolab

oVirt
(Closer but no cigar)

InstallingoVirt

Mail & Mailing lists
port 25 is now open for business on tami.org.il, or mail.tami.org.il

We don't have anything there yet for anyone - it's all local accounts. Mail can be delivered outwardly, thanks to a SPF record:

$ dig tami.org.il txt | grep "ANSWER SECTION" -A1 ;; ANSWER SECTION: tami.org.il. 86384	IN	TXT	"v=spf1" "a" "mx" "-all"

Current:
 * mailman 2 instance at lists.tami.org.il

Plans:
 * mailman 3 + hyperkitty, to give it a forum interface too

Watching:
 * librelist - not sure why I would prefer it yet.

Todo
 * how does it compare to google groups?
 * can we run them side by side? test run where we keep using google groups and having hyperkitty on the side, using the same script that needs to be written anyway to pull content from google groups.

Discourse

 * http://meta.discourse.org/t/mailing-list-and-nntp-bridge/3453
 * http://meta.discourse.org/t/openshift-as-free-discourse-host/8000

Mailman Howto
Using fedora package it's simpler:
 * Condensed version of: http://www.list.org/mailman-install.pdf
 * yum install mailman (version 2, not the developed version 3)
 * /usr/share/doc/mailman-2.1.15/INSTALL.REDHAT

Google Groups - retrieving members and messages
There is no easy way to retrieve the messages so far.

To retrieve the member list:
 * as a group owner there should be a csv export option

Google Apps API:
 * https://developers.google.com/apps-script/reference/groups/groups-app?csw=1
 * Haven't tested this yet.

And more
 * Feature request for it issue 27. 3rd highest ranking.
 * Faux API (add member only, php): https://github.com/auzigog/google-groups-php-api
 * Stack Overflow discussion

FTP setup
ftp mail.local or 10.81.2.24 6 7

Using vsftpd. Some settings required for renames and deletions to work:
 * anon_mkdir_write_enable=YES
 * anon_other_write_enable=YES

selinux notes: (man ftpd_selinux)
 * enable anonymous uploads:
 * setsebool -P ftpd_anon_write 1
 * set public things to public_content_rw_t
 * semanage fcontext -a -t public_content_rw_t "/media/ftp(/.*)?"
 * restorecon -F -R -v /media/ftp

sagemath
Sage is a free open-source mathematics software system licensed under the GPL. It combines the power of many existing open-source packages into a common Python-based interface.

we have a sagemath instance running internally

mail.lan:8080 open to new user creation, not visible externally. (local ip is 10.81.2.247 if name resolution fails) We are running 5.13, it can be upgraded to 6.11 if there is a requirement for that.

github
our hitgub