SysAdmin IT Manual for Fork Sand
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

2.8 KiB

# radicle notes

# Install build deps
apt install \
-t buster-backports \
apache2 \
build-essential \
npm \
python3-certbot-apache \

# Add firewall rules:
-A INPUT -p udp --dport 12345 -j ACCEPT
# Web Admin
-A INPUT -p tcp --dport 8080 -j ACCEPT
# Web proxy
-A INPUT -p tcp --dport 80 -j ACCEPT
-A INPUT -p tcp --dport 443 -j ACCEPT
# Dev server
-A INPUT -p tcp --dport 5000 -j ACCEPT

# Enable apache modules
a2enmod ssl rewrite proxy proxy_http
a2ensite default-ssl.conf
systemctl restart apache2

# Set up certbot:

# test it:
echo > /var/www/html/index.html


# Configure apache2 https proxy

$ cat /etc/apache2/sites-enabled/000-default-le-ssl.conf
<IfModule mod_ssl.c>
<VirtualHost *:443>
ServerAdmin webmaster@localhost
DocumentRoot /var/www/html
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
SSLCertificateFile /etc/letsencrypt/live/
SSLCertificateKeyFile /etc/letsencrypt/live/
Include /etc/letsencrypt/options-ssl-apache.conf

RewriteEngine on
RewriteCond %{SERVER_NAME} [OR]
RewriteCond %{SERVER_NAME}
RewriteRule ^{REQUEST_URI} [END,NE,R=permanent]

ProxyPreserveHost On
ProxyRequests off
AllowEncodedSlashes NoDecode
ProxyPass / http://localhost:8080/ nocanon
ProxyPassReverse / http://localhost:8080/


# Install rustup
curl --proto '=https' --tlsv1.2 -sSf | sh

source $HOME/.cargo/env

# Install yarn
mkdir -p ~/bin/
cd ~/bin/
ln -s /usr/bin/yarnpkg yarn

which yarn

# Clone radicle
cd ~/devel/
git clone
cd radicle-bins

# Build with yarn
cd seed/ui
yarn build

mkdir -p ~/.radicle-seed
chmod og-rwx ~/.radicle-seed

# add to ~/.bashrc
export PATH="$HOME/.radicale/bin:$PATH"

# Create key
cargo run -p radicle-keyutil -- --filename ~/.radicle-seed/secret.key

# Run the thing:
cat >>

set -x

cd ~/devel/radicle-bins/

cargo run \
--verbose \
-p radicle-seed-node --release -- \
--log debug \
--root ~/.radicle-seed \
--peer-listen \
--http-listen \
--name "Fork Sand seedling" \
--public-addr "" \
--assets-path seed/ui/public \
< ~/.radicle-seed/secret.key

# Dev mode
# To start a local dev server for preview, run: `yarn run dev`, then point your
# browser at: http://localhost:5000.
yarn run dev
# Dev tunnel
ssh -N -C -L 5000:localhost:5000

# Peer to Peer
# p2p nodes example: