Differences

This shows you the differences between two versions of the page.

--- berkeleylug:digital_resources [2019-06-09T21:22:48+0000] – Various updates (WordPress.com, etc.) michael_paoli
+++ berkeleylug:digital_resources [2020-05-18T11:31:53+0000] (current) – michael_paoli
@@ Line 5: / Line 5: @@
 Domains:
 berkeleylug.com (primary) registrant/owner: Michael Paoli - (transferred 2019-03-04) Registry Expiry Date: 2020-01-20T05:05:36Z
-berkeleylug.org (alternate (& non-essential - redirects to primary) registrant/owner: Michael Paoli - (transferred 2019-03-04) Registry Expiry Date: 2020-05-17T04:39:28Z
+former domain (expired): berkeleylug.org (alternate (& non-essential - redirected to primary) registrant/owner: Michael Paoli - (transferred 2019-03-04) expired: 2020-05-17T04:39:28Z
 DNS:
 berkeleylug.com (canonical) and berkelelylug.org - data is publicly accessible via AXFR from one or more of the public authoritative nameservers.
-WordPress.com hosted - per earlier communcations, intending to migrate of the WordPress.com hosted by 2019-08-27T09:53:17Z (that would be 6 months after Michael Paoli was notified of having been granted admin access for the BerkeleyLUG site on its WordPress.com hosting).
+Was WordPress.com hosted - per earlier communcations, was intending to migrate of the WordPress.com hosted by 2019-08-27T09:53:17Z (that would be 6 months after Michael Paoli was notified of having been granted admin access for the BerkeleyLUG site on its WordPress.com hosting).
+The migration happened / was completed around 2019-08-30.
+Migration process went approximately like this (this is outline that was developed and used for the process):
+https://berkeleylug.com/ WordPress export/import migration outline:
+o create export(s) as (partial) backups
+o import looses mtimes from media ("upload") files - may want to snag those, e.g. via curl for potential restoration
+o the one unattached media: https://berkeleylug.files.wordpress.com/2015/05/cropped-stroll5.jpg
+  o snag and save the above
+  o after import, add it to the uploads
+o set up new/target site infrastructure (suitable for import, hosting, etc.)
+o drop DNS TTLs suitably in advance to ease transition and speed thereof
+o the following (at least) twice, once from "old" to temporary, and once from temporary to new; excepting "only once" steps:
+o only once steps:
+  o set up web server redirect for http[s]://www.berkeleylug.com(/.*)?
+  o only "just" prior to move/import to final new: change DNS
+  o change WordPress.com hosted primary domain to: berkeleylug.wordpress.com
+  o wait suitable TTL period
+  o configure site sending email
+  o set (local) timezone
+  o Users: set email addresses & names (where applicable) as before, reset passwords & send (or send reset links)
+  o post migration to final new, optionally(?): Plugin: Akismet Anti-Spam - update and/or activate
+  o disable temporary(/ies) once no longer needed: (web server, DNS, clear out content)
+o (re)initialize target location
+  o reinitialized database
+  o edit config file for proper directory location for site name
+  o wipe any relevant content (empty uploads)
+  o set up only one user, and as Administrator, and not conflicting with users (login names) of export site
+  o delete any default content created there (e.g. sample page, post, comment)
+  o import
+  o for all authors from export, create users on import, with same login name and assigning authorship to same login names
+  o check box to download media
+  o as feasible, match configuration/appearance to export site
+    o theme --> Nucleare
+      o Special Color --> #3f6d6e
+      o Site Title: BerkeleyLUG
+      o Tagline: Berkeley Linux Users Group
+      o Site Icon: Tux: uploads/2009/02/penguin1.png
+    o Customizing:
+      o Menus: Menu Options: (select/yes): Automatically add new top-level pages to this menu
+      o Add Widget: Text, and move to top with content: Note - Blog posts are written by BerkeleyLUG members of various backgrounds, experience level etc... The views and opinions in each blog post do not represent the views of the group as a whole or the founders.
+      o Other Widgets and (otherwise default) probably fine: Text (added above), Search, Recent Posts, Recent Comments, Archives, Categories, Meta
+    o Discussion:
+      o Disable (uncheck):
+        o Attempt to notify any blogs linked to from the article
+        o Allow link notifications from other blogs (pingbacks and trackbacks) on new articles
+        o Comment author must fill out name and email
+      o Enable (check):
+        o Users must be registered and logged in to comment
+        o Break comments into pages with 50 top level comments per page and the last page displayed by default
+o robots.txt - enable on berkeleylug.com, disable (searches/indexing by search engines) on others
 .org not primary, redirector in place:
@@ Line 63: / Line 114: @@
 Location: https://berkeleylug.com/foo/bar/baz
 $
 @berkeleylug.org neither accepts nor sends email (no MX, A/AAAA on TCP port 25 rejects connection or rejects SMTP attempts to domain, SPF - none sends, hard fail all:
 berkeleylug.org. IN SPF "v=spf1 -all"
@@ Line 74: / Line 126: @@
 $ curl -I http://www.berkeleylug.com/ 2>&1 | grep -i -e '^HTTP/' -e '^Location: ' -e '^curl:'
 HTTP/1.1 301 Moved Permanently
-Location: https://www.berkeleylug.com/
+Location: https://berkeleylug.com/
 $ curl -I https://www.berkeleylug.com/ 2>&1 | grep -i -e '^HTTP/' -e '^Location: ' -e '^curl:'
-HTTP/2 301
+HTTP/1.1 301 Moved Permanently
-location: https://berkeleylug.com/
+Location: https://berkeleylug.com/
 $ curl -I https://berkeleylug.com/ 2>&1 | grep -i -e '^HTTP/' -e '^Location: ' -e '^curl:'
-HTTP/2 200
+HTTP/1.1 200 OK
 $
 TLS(/"SSL") - Web - handful of (separate) Web certs only*:
-$ nmap -Pn -r -sT -p 443 --script=ssl-cert berkeleylug.com calendar.berkeleylug.com docs.berkeleylug.com mail.berkeleylug.com sites.berkeleylug.com www.berkeleylug.com  perl -e 'while(<>){print if /Not valid after: /o; if(/^\| Subject Alternative Name: /){chomp; s/DNS:(?:(?i)(?![^, ]*berkeleylug\.))[^, ]+(?:, |$)//go; s/, ?$//o; print "$_\n";};};'
+$ nmap -Pn -r -sT -p 443 --script=ssl-cert berkeleylug.com www.berkeleylug.com | perl -e 'while(<>){print if /Not valid after: /o; if(/^\| Subject Alternative Name: /){chomp; s/DNS:(?:(?i)(?![^, ]*berkeleylug\.))[^, ]+(?:, |$)//go; s/, ?$//o; print "$_\n";};};'
-| Subject Alternative Name: DNS:berkeleylug.com
+| Subject Alternative Name: DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
-| Not valid after:  2019-04-28T02:29:40
+| Not valid after:  2019-11-06T10:33:09
-| Subject Alternative Name: DNS:www.berkeleylug.com
+| Subject Alternative Name: DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
-| Not valid after:  2019-06-01T14:37:18
+| Not valid after:  2019-11-06T10:33:09
 $
-*ignoring domains that WordPress.com lumps in there that aren't at all BerkeleyLUG
-########################################################################
+$ </dev/null openssl s_client -servername berkeleylug.com -starttls smtp -connect 198.144.194.238:25 2>>/dev/null | sed -ne '/^-----BEGIN CERTIFICATE-----$/,/^-----END CERTIFICATE-----$/p' | openssl x509 -text -noout | sed -ne '/Not After : /p;/Subject Alternative Name:/{N;p;q;}'
-various bits to test on temp.berkeleylug.com - to presumably later be
+            Not After : Nov  6 09:56:55 2019 GMT
-berkeleylug.com, cert also for [www.]berkeleylug.org
+            X509v3 Subject Alternative Name:
-Created key and obtained (non-Google) CA signed cert also covering:
+                DNS:*.balug.org, DNS:*.berkeleylug.com, DNS:*.lists.balug.org, DNS:balug.org, DNS:berkeleylug.com
-*.berkeleylug.com,berkeleylug.com,*.berkeleylug.org,berkeleylug.org expires: 2019-06-07T02:07:58Z
+$
-... install the newer cert for SMTP (will likely end up needed for at
-least postmaster@berkeleylug.com, for WordPress site to, e.g. send
-user password resets, etc.
-# pwd -P
-/etc/exim4/eximconfig/config
-# ls -ld tls_c*.pem
-lrwxrwxrwx 1 root root 53 Sep 17  2017 tls_certificate_private.pem -> ../../../letsencrypt/live/lists.balug.org/privkey.pem
-lrwxrwxrwx 1 root root 55 Sep 17  2017 tls_certificate_public.pem -> ../../../letsencrypt/live/lists.balug.org/fullchain.pem
-# ln -sf ../../../letsencrypt/live/berkeleylug.com/privkey.pem tls_certificate_private.pem
-# ln -sf ../../../letsencrypt/live/berkeleylug.com/fullchain.pem tls_certificate_public.pem
-# ls -lLd tls_c*.pem
--r--r----- 1 root Debian-exim 3272 Mar  8 19:03 tls_certificate_private.pem
--r--r--r-- 1 root root        4033 Mar  8 19:08 tls_certificate_public.pem
-# systemctl reload exim4.service
-#
-$ </dev/null openssl s_client -servername temp.berkeleylug.com -starttls smtp -connect 198.144.194.238:25 2>>/dev/null | sed -ne '/^-----BEGIN CERTIFICATE-----$/,/^-----END CERTIFICATE-----$/p' | openssl x509 -text -noout | sed -ne '/Not After : /p;/Subject Alternative Name:/{N;p;q;}'
-            Not After : Jun  7 02:07:58 2019 GMT
-            X509v3 Subject Alternative Name:
-                DNS:*.balug.org, DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:*.lists.balug.org, DNS:balug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
-$
 Also installed on https://[www.]berkeleylug.org/:
 $ (TZ=GMT0 export TZ; hosts='www.berkeleylug.org berkeleylug.org'; { nmap -Pn -r -sT -p 443 --script=ssl-cert $hosts; nmap -6 -Pn -r -sT -p 443 --script=ssl-cert $hosts; } | grep -e '^Nmap scan report for ' -e '^PORT ' -e '^[0-9]*/tcp open' -e '^| Subject Alternative Name: ' -e '^| Not valid after: ')
@@ Line 121: / Line 152: @@
 PORT    STATE SERVICE
 /tcp open  https
-| Subject Alternative Name: DNS:*.balug.org, DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:*.lists.balug.org, DNS:balug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
+| Subject Alternative Name: DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
-| Not valid after:  2019-06-07T02:07:58
+| Not valid after:  2019-11-06T10:33:09
 Nmap scan report for berkeleylug.org (198.144.194.238)
 PORT    STATE SERVICE
 /tcp open  https
-| Subject Alternative Name: DNS:*.balug.org, DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:*.lists.balug.org, DNS:balug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
+| Subject Alternative Name: DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
-| Not valid after:  2019-06-07T02:07:58
+| Not valid after:  2019-11-06T10:33:09
 Nmap scan report for www.berkeleylug.org (2001:470:1f05:19e::4)
 PORT    STATE SERVICE
 /tcp open  https
-| Subject Alternative Name: DNS:*.balug.org, DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:*.lists.balug.org, DNS:balug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
+| Subject Alternative Name: DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
-| Not valid after:  2019-06-07T02:07:58
+| Not valid after:  2019-11-06T10:33:09
 Nmap scan report for berkeleylug.org (2001:470:1f05:19e::4)
 PORT    STATE SERVICE
 /tcp open  https
-| Subject Alternative Name: DNS:*.balug.org, DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:*.lists.balug.org, DNS:balug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
+| Subject Alternative Name: DNS:*.berkeleylug.com, DNS:*.berkeleylug.org, DNS:berkeleylug.com, DNS:berkeleylug.org
-| Not valid after:  2019-06-07T02:07:58
+| Not valid after:  2019-11-06T10:33:09
 $
 ########################################################################
 robots.txt:
-$ TZ=GMT0 date -Iseconds && curl -s https://berkeleylug.com/robots.txt
+$ TZ=GMT0 date -Iseconds && (set -x; curl -s https://berkeleylug.com/robots.txt; curl -s https://berkeleylug.wordpress.com/robots.txt)
--03-05T15:54:12+00:00
+-09-19T03:55:09+00:00
-# If you are regularly crawling WordPress.com sites, please use our firehose to receive real-time push updates instead.
++ curl -s https://berkeleylug.com/robots.txt
-# Please see https://developer.wordpress.com/docs/firehose/ for more details.
-Sitemap: https://berkeleylug.com/sitemap.xml
-Sitemap: https://berkeleylug.com/news-sitemap.xml
 User-agent: *
 Disallow: /wp-admin/
 Allow: /wp-admin/admin-ajax.php
-Disallow: /wp-login.php
++ curl -s https://berkeleylug.wordpress.com/robots.txt
-Disallow: /wp-signup.php
+User-agent: *
-Disallow: /press-this.php
+Disallow: /
-Disallow: /remote-login.php
-Disallow: /activate/
-Disallow: /cgi-bin/
-Disallow: /mshots/v1/
-Disallow: /next/
-Disallow: /public.api/
-# This file was generated on Mon, 19 Nov 2018 07:12:09 +0000
+# This file was generated on Tue, 03 Sep 2019 00:02:23 +0000
 $
-web site managed via: http://berkeleylug.wordpress.com/
+(new/current) web site (hosting) WordPress aspects mostly managed via:
-Looks like the WordPress.com hosting is likely presently the $4.00/month billed yearly plan, notably includes:
+https://berkeleylug.com/wp-login.php
+old/"former" web site managed via: http://berkeleylug.wordpress.com/
+Looks like the WordPress.com hosting is likely presently the $4.00/month billed yearly plan
+(looks like it has been prepaid and presently expires 2020-04-07: "Expires on April 7, 2020"),
+notably includes:
 custom domain
 Remove WordPress.com Ads
@@ Line 186: / Line 211: @@
 Michael Paoli
 Grant Bowman
-Not that this calendar mostly only exists for historical purposes, and has mostly been superseded by:
+Note that this calendar mostly only exists for historical purposes, and has mostly been superseded by:
 SF Bay Area Open Source/Linux Events https://calendar.google.com/calendar/embed?src=caj9iea2ol69b7n2uqdek4ocso%40group.calendar.google.com&ctz=America%2FLos_Angeles
-Which Michael Paoli (and many other folks) have access to Make changes to events.
+Which Michael Paoli (and many other folks) have access to make changes to events.
 Fosstodon instance on Mastodon