fr33domlover
/
Rel4tion-Wiki
mirror of git://seek-together.space/wiki.git


			
				
					
						
						
							1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798
							This website has several sections. The three main ones are the wiki, the git
browser and the file browser. There are more sections, such as the CA subdomain
and the documentation browser. Each section has a different technology powering
it. The wiki is powered by [ikiwiki].

ikiwiki wikis are often managed by putting their content under version control.
This wiki is managed by a [git] repository. git is made for version control of
text, and text difference algorithms don't make sense for binary files. Managing
large/binary files under version control can quickly bring the repository to a
huge size, taking long time to clone. That is true for any version control
system, because a large file is a large file.

The wiki therefore uses another mechanism, in parallel to git, for handling any
files that aren't in plain text format. This mechanism is [[!wikipedia SFTP]].
It's meant for images (especially raster ones like PNG and JPG), audio, video,
executables, compressed files, document files that are internally compressed
(such as OpenDocument) and so on.

[[!template id=todo text="I remember I wrote somewhere else what should go into
                          ftp - find that and put here"]]

The SFTP part of the wiki works as an "underlay". It's a folder hierarchy with
the same structure as a git repository, and its content is merged with the git
repository's content. If a file with the same name exists in both, git's version
is taken (that's why it's "underlay" and not "overlay"). SFTP gives access to
the whole FTP server, but only the wiki area can be modified. Files can be
added, removed and edited.

**IMPORTANT**: Unlike with git, there is no version control of the files in
SFTP. The server does make backups, but don't rely on them. If you need to keep
many versions or have sensitive/critical content there, keep backups of it in
case something bad happens, e.g. someone else deletes it by mistake.

In addition to the whole-wiki SFTP access, each person can also have a personal
SFTP-accessible underlay which maps to their personal area under the [[/people]]
directory. This way you can manage your personal notes etc., feeling safer. But
being able to write on other people's pages and discuss ideas together is a
really cool and useful thing, so I suggest you keep your pages and text notes
in the git repository, and use SFTP just for other things, e.g. images and
audio.

This page documents only the whole-wiki SFTP access.

[ikiwiki]: http://ikiwiki.info
[git]: http://git-scm.com

# 1 :: Everything...

There's still some work to do here! Decide if the personal SFTP gets its own
page, decode if the intro should be under /access maybe, read about SFTP, learn
how to use it myself, make screenshots, list several clients...

For now, here's a quick list of the steps.

1. Generate an SSH key, if you don't have one yet.
2. Talk to [[fr33domlover]] and ask him to give you access to SFTP. If you
   already have write access to any git repository, he should already have your
   public SSH key. If not, you'll need to send him your public SSH key. Note
   that anyone can do that, gain access and vandalize the wiki. fr33domlover has
   faith in humanity, but it may still be a good idea to send the key in a GPG
   signed e-mail. If you have good intentions (and you do), it should be quick
   and easy :-)
3. Get an SFTP client program, connect to Partager's server and have fun.

If you have the OpenSSH client (which is very likely, if you already used the
`ssh` command once), you should also have the accompanying SFTP client program,
`sftp`. You need to connect as the `wikiftp` user, in the same way you connect
as the `git` user when pushing to git repositories. One simple command connects
you to the server:

	$ sftp wikiftp@partager.null

If you want to go straight to the wiki section, these work too:

	$ sftp wikiftp@partager.null:wiki
	$ sftp wikiftp@partager.null:wiki/people/joe

On the first time, you'll be asked to verify the server's fingerprint. There are
2 commons ways to do that: DNS (using SSHFP records) and PGP (using Monkeysphere
validation agent). I'm not a big expert but I'd suggest using the second one.
Anyway neither is implemented yet. You can install Monkeysphere, but the
server's key is not signed yet, so it cannot be verified this way. Until that
works, you can compare the fingerprint you got with the following one. I suggest
you do that after reloading this page in HTTPS.

	| ssh-hostkey: 1024 1e:57:72:9a:26:1f:ba:8c:cf:3e:ad:22:4d:4f:f6:9a (DSA)
	| 2048 2d:7f:e6:56:9b:fe:e1:3c:f9:93:c2:33:98:f5:00:1a (RSA)
	|_256 43:ec:87:14:30:b9:ca:9b:5e:02:f4:ca:e9:db:b4:bb (ECDSA)

Major work in the SFTP underlay should be coordinated, because there is no
version control. Use the wiki for that ;-)

# More Information

- [[!wikibooks OpenSSH/Client_Applications#The_SFTP_client]]
- <http://www.phcomp.co.uk/Tutorials/Unix-And-Linux/ssh-check-server-fingerprint.htm1>
- <https://www.digitalocean.com/community/tutorials/how-to-validate-ssh-server-identities-with-monkeysphere-on-an-ubuntu-vps>