|Description||The Gentoo Infrastructure project provides and develops services for the Gentoo developer and user community, ensuring availability, security, and functionality.|
|IRC channel||#gentoo-infra (webchat)|
Last elected: 2019-05-02
(and inherited member(s))
The Gentoo Infrastructure project is comprised of several smaller projects that, as a whole, provide the resources, services and technology necessary to support the Gentoo Linux project. The project is responsible for the security, availability and integrity of the data stored on the Gentoo Linux servers.
The Gentoo Infrastructure team is made up of a group of people with a variety of backgrounds, from traditional system and network administration, to deep security expertise. These members work together to ensure all necessary resources are available to keep the Gentoo Linux project running and available.
Users and developers are asked to refer to the Infrastructure status overview before reporting issues or asking about services.
- Infrastructure guidelines — provides general guidance to infra members is to take actions that avoid impropriety (actual, implied, or perceived).
- OpenPGP Authority Keys
- Updating Expired Gentoo Keys
- SSH key guide — explains on how to create and use ssh keys to interact with the Gentoo ecosystem.
- Servers maintained by the Infrastructure project — describes the current list of hosts that are used to provide the various services offered by the Gentoo project
- Sender Policy Framework implementation on gentoo.org
- Community mirrors documentation
- Git migration
- Service catalog (draft)
- Sponsoring Gentoo (via Infrastructure)
- Backup system v3 (DRAFT)
- Secret-storage v2 (DRAFT)
- Password policy (DRAFT)
- Rsync replacement (DRAFT)
- Two-factor authentication (DRAFT)
- Server-side password policy (DRAFT)
- A security policy narrative (DRAFT)
- OpenPGP keys maintained by Infra (DRAFT)
- Generating GLEP 63 based OpenPGP keys
- Redirector: Bouncer & distfiles.g.o replacement (DRAFT)
- Vault, Consul, and Nomad
- Things Infra wants to buy
Services for Gentoo developers
- Mailing lists — provides details on managing the gentoo-dev mailing list and the associated whitelist.
- Git hosting — provides details on how Gentoo developers can request a new git repository at gitweb.g.o.
- Machines of different architectures available for Gentoo development
- dev.gentoo.org 2-step authentication
- LDAP guide — a guide to using the Gentoo Infrastructure's LDAP system for developers, recruiters, and administrators.
- Nitrokey Pro 2 guide for Gentoo developers
- Developer e-mail guide — describes what Gentoo Developers can expect from the Infrastructure's e-mail system and provides configuration details as required.
- Developer webspace guide — documents how a Gentoo developer can configure their personal webspace on dev.gentoo.org.
- Developer away notification (~/.away file on dev.g.o) — a notification service (AKA devaway) for alerting the community when a developer is unavailable.
- api.gentoo.org — a service for providing data files for automated processing.
- Project file hosting — details how Gentoo projects can host their (relatively small) project files on Gentoo infrastructure
- Gitlab (TEST-ONLY) — Gitlab is currently deployed in a testing capacity on gitlab.gentoo.org and is not yet publicly available.
- packages.gentoo.org build documentation
- Single Sign-on (SSO) — Keycloak is currently used to implement a Single sign-on (SSO) for Gentoo developers.
Instructions for infrastructure developers
- Developer retirement process — describes how to retire a developer properly from all Gentoo hosted services.
- Server SSH configuration — documents how OpenSSH should be configured on Gentoo Infrastructure servers.
- SPARC server recovery
- Role-based access control for Infra
- Email alias management — nicely and simply details the management of email aliases on dev.g.o for new project teams, architectures, etc.
- Incident reports — This page lists incident reports published by the Gentoo Infrastructure team after serious events affecting users and developers alike.