So, I've inherited a server for a retailer and have to be able to maintain it.
My story: I'm just about finished with my bachelor's degree (just a couple GenEd courses left) and was hired into a company as a PHP programmer. The person who had set up the server is no longer here, and I have to be able to do maintenance, security officer-ing, whatever we need (on top of my normal duties of programming, washing windows, and answering phones). What's worse is that I have a very minimal amount of experience with Linux/UNIX (basically, one whole class this past summer).
Trust me, I know this isn't an ideal scenario. There should be a fully capable server administrator here. Isn't going to happen anytime soon.
I need a bit of guidance, if the gurus here would be so kind
I know that...
- we're running FreeBSD 6.2-RC1 and running a web server, database, and email all within jails, and that jails provide some level of security.
- the web server is lighttpd/1.4.18
- the database is MySQL/5.0.45
- email has postfix, dovecot, and amavisd which does... stuff
- DNS is running and doing... something
Really doesn't seem like a whole lot, now that I list it out....
Anyhow, do any of you know a good process for figuring out a sort of complete inventory of the system? Basically, users, programs, security, ports, any and all settings that would be customized, anything else that could possibly
be useful in running, maintaining, and keeping this secure? And tips on why certain packages, settings, and configurations would be in place.
On top of that, the other guy had his own site and email hosted on our server (separate jails) and some setting somewhere (probably in the DNS or DNS cache) is still telling it that it's here, when it should be hitting DNS and finding it's new home out on the web.
My company is kind of afraid of sabotage at this point, and I want to be able to assure them that before the other guy left, he didn't do anything to our email (since there's been a slight dropoff in it). And since he was the former admin, he had root access, and knew a lot
more than I do. I'd like to think the best of people, but you know, maybe not everyone passed the Ethics final.
Obviously there isn't much you can do without actually using
the server, but any guidance you can offer towards figuring this out on my own would be appreciated.