Testmgr¶
Purpose¶
This system is used for managing test users and reading mails from the test system inbox.
Application Links¶
- Testmgr application
Administration¶
System Administration¶
Primary: Bernhard Fröhlich
Secondary: Dirk Astrath
Application Administration¶
Application |
Administrator(s) |
---|---|
Test manager |
Contact¶
Additional People¶
Jan Dittberner has sudo access on that machine too.
Basics¶
Physical Location¶
This system is located in an LXC container on physical machine Infra02.
Logical Location¶
- IP Internet:
- IP Intranet:
- IP Internal:
- IPv6:
- MAC address:
00:16:3e:13:87:cc
(eth0)
See also
See Network
Monitoring¶
- internal checks:
- external checks:
Operating System¶
Debian GNU/Linux 8 Wheezy
Services¶
Listening services¶
Port |
Service |
Origin |
Purpose |
---|---|---|---|
22/tcp |
ssh |
ANY |
admin console access |
25/tcp |
smtp |
local |
mail delivery to local MTA |
80/tcp |
http |
ANY |
application |
443/tcp |
https |
ANY |
application |
3306/tcp |
mysql |
local |
MySQL database for testmgr |
Running services¶
Service |
Usage |
Start mechanism |
---|---|---|
Apache httpd |
Webserver for testmgr |
init script |
cron |
job scheduler |
init script |
MySQL |
MySQL database server for testmgr |
init script
|
openssh server |
ssh daemon for remote administration |
init script |
Postfix |
SMTP server for local mail submission |
init script |
rsyslog |
syslog daemon |
init script |
Databases¶
RDBMS |
Name |
Used for |
---|---|---|
MySQL |
ca_mgr |
testmgr |
MySQL |
cats_db |
CATS test instance |
Outbound network connections¶
Security¶
SSH host keys¶
Algorithm |
Fingerprints |
---|---|
RSA |
|
DSA |
- |
ECDSA |
- |
ED25519 |
- |
See also
Non-distribution packages and modifications¶
The testmgr software is a custom PHP application installed in /var/www/ca-mgr1.it-sls.de.
The CATS test setup is a custom PHP application installed in /var/www/cats1.it-sls.de.
Risk assessments on critical packages¶
The system uses an unsupported OS version and needs to be updated as soon as possible.
Critical Configuration items¶
The system uses certificates issued by a test CA.
Keys and X.509 certificates¶
Certificate for CN mgr.test.cacert.org, see details in the certificate list
certificate in file /etc/ssl/certs/mgr_test_cacert_org.crt
private key in file /etc/ssl/private/mgr_test_cacert_org.pem
Certificate for CN cats.test.cacert.org, see details in the certificate list
certificate in file /etc/ssl/certs/cats_test_cacert_org.crt
private key in file /etc/ssl/private/cats_test_cacert_org.pem
Apache2 configuration¶
The Apache web server is configured using the usual Debian /etc/apache2
configuration directory. The VirtualHost entries are linked to
/etc/apache2/sites-enabled
.
Changes¶
Planned¶
Todo
setup monitoring for testmgr
Todo
make testmgr available on default ports via proxyin
Todo
setup proper DNS entries for testmgr
Todo
upgrade testmgr to a supported OS version (depends on upgraded CATS and testmgr software)
Todo
use Puppet to manage testmgr
System Future¶
The testmgr system should support all test systems/stages. The testmgr application should either be rolled out multiple times or should have support for multiple test systems. This needs to be discussed in a broader group of software development, software assessment and system administration teams.
Additional documentation¶
See also