I’ve been asked to set up a server for a research team at my university. I’ve already had the practice of setting a server at home, so I have a rough idea of how things should be done. Still, I wish to follow best practices when setting up a server for this use case. Plus I would prefer to avoid too much tinkering for the setup since I’m planning to keep the installation as simple as possible.
Following are some rough constraints and considerations for the setup:
- Server computer is a Mac Mini (latest model I think?). I’ve been told they would replace macOS with Linux, still I believe I should ready if they don’t (I don’t have experience with macOS at all)
- Server will be situated in university and provided a static IP address
- Team needs remote access to the server, presumably comfortable with using CLI
- I am unlikely to be permitted access to server myself after setup, so it should be ready to be managed by the team
- Extra hardware and/or paid software could be arranged but to a limited extent and within reason
I don’t think they have really any requirement other than having remote access to the server. I think SSH should suffice, however I was wondering if I could also arrange for backups, GUI server panel etc.
frongt@lemmy.zip 3 weeks ago
Step one is check with the university IT department. Don’t put random unmanageable shit on other people’s networks.
Why a Mac running Linux? I can’t think of a use case for that.
bergetfew@sopuli.xyz 3 weeks ago
The setup should be no problem to the university as long as it’s set up to do what I was told it would do.
Is it okay to use macOS too? I thought Linux was more prevalent among servers. Although if there is no significant change in operating one compared to Linux, then I’ll just stick to macOS after all.
curbstickle@lemmy.dbzer0.com 3 weeks ago
The biggest pain is that its apple silicon, which limits what’s built for it.
Depending on what its doing, you may need to build dependencies from source. You also may have to use some mac-specific tools to download pre-builts and to do builds.
In some cases, it may be better to run a VM with Linux and forge on ahead, but its really going to depend on what tasks the server is handling.
Bane_Killgrind@lemmy.dbzer0.com 3 weeks ago
Can you ask to use the universities Identity Management system? That way only current students and faculty will have access.
Goodeye8@piefed.social 2 weeks ago
And why can't university IT set up the server? No offense but you're a nobody asking us, also nobodies, how to set up some sort of a funky server on the university network, meanwhile the university pays people to do this for a living.
Where will the server actually be? Will it be in a secure location where only authorized personnel can physically access the machine or will it be behind the trash can in the cafeteria where anyone can access it?
Since you will lose access to it once it's set up who will monitor the system? Who turns it on in case it somehow gets shut down? Who sets up backups and does rollbacks if something breaks?
What happens to the hardware when research project is over?
To me it all smells like something the IT department should set up. They already know the best practices. They also know whatever security guidelines they need to follow. They will have monitoring systems in place so they could admin the system instead of leaving it without an actual administrator. And they're probably the ones decommissioning the hardware when the research project is over.
My suggestion is to leave it to the people who are getting paid to do this. It's one thing to know how to set up a home server on your home network, it's a different thing to set up a server on an enterprise network.
frongt@lemmy.zip 3 weeks ago
It depends on what you’re trying to do with it. Typically people only use Macs as servers when they’re doing development for Apple products.
MotoAsh@lemmy.world 3 weeks ago
It shouldn’t be significantly different from Linux, except maybe in what would be required to truly lock it down for a server. Assuming you’ll be installing normal server side stuff, all that should be nearly identical, especially if you use Docker or other containers/vm/interpreter based things.
Though it’s been yeeaaaars since I’ve touched a mac, so someone far more experienced will have to chime in if I’m off base!
aubeynarf@lemmynsfw.com 2 weeks ago
probably because they already own it.