[tech] Server upgrades yesterday

[Daniel Axtens]

Hi all,

While [SZM] and [MRD] were working on VMs, here's what I did on the servers yesterday.

 - motsugo: upgraded to kernel 3.1, thanks [BOB].

 - mussel: rebooted to get most recent debian stable kernel (thanks [TRS]).

 - mooneye: left it so [BOB] can get his kicks on uptime

 - murasoi: updated packages and rebooted to get most recent kernel.
   Installed snort. This became a rather epic quest:
    - Install the snort pacakge. Realise it doesn't support netfilter queue, which [DAA] says is important.
    - Install the dev packages libnetfilter-queue.
    - Rebuild libdaq0 from source.
    - Rebuild snort from source:
       - Remove prelude support, it causes compiling to break due to a missing .la file.
       - Hack the init.rd file to make it support nfq rather than pcap.
    - NOTE: We're now using hacked up debian packages of snort and libdaq0 (versions are suffixed by "~dja"). PLEASE be careful when upgrading.

  Snort is currently only watching sigma, but feel free to expand it if you like.

  NOTE: ucc-fw and dovecot2 didn't come up correctly after reboot. [DAA] has hit dovecot2 over the head, but someone should confirm ucc-fw has been correctly set up (it was missing symlinks in /dev/rcN.d/)

Enjoy!
[DJA]