Skip to content

Add almapeople.org page + minor infra tweaks #796

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
bennyvasquez merged 6 commits into from
May 26, 2026
+137 −8
Merged

Add almapeople.org page + minor infra tweaks #796

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
3e710a7
Add almapeople.org page
jonathanspw May 21, 2026
d11a823
Add almapeople.lorg to infra deliverables
jonathanspw May 21, 2026
6d5040d
Remove PES from infra deliverables
jonathanspw May 21, 2026
4cab9df
Remove inactive team members
jonathanspw May 21, 2026
1d1f0aa
add GCP CDN mirror to deliverables
jonathanspw May 21, 2026
c4eecb4
Add forums to infra deliverables
jonathanspw May 21, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 5 additions & 1 deletion docs/.vuepress/config.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -329,7 +329,11 @@ module.exports = {
"/sigs/Cloud",
"/sigs/Core",
"/sigs/HPCandAI",
"/sigs/Infrastructure",
{
title: "Infrastructure SIG",
path: "/sigs/Infrastructure",
children: ["/sigs/infrastructure/almapeople"],
},
"/sigs/LiveMedia",
{
title: "Marketing SIG",
Expand Down
10 changes: 3 additions & 7 deletions docs/sigs/Infrastructure.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,7 @@ We don't currently hold regular meetings, but work asynchronously in mattermost
- Official mirrors:
- Official rsync mirror: https://rsync.repo.almalinux.org
- [AWS CloudFront Mirror](https://github.com/AlmaLinux/mirrors/blob/master/mirrors.d/aws.repo.almalinux.org.yml)
- [GCP CDN Mirror](https://github.com/AlmaLinux/mirrors/blob/master/mirrors.d/gcp.repo.almalinux.org.yml)
- [repo.almalinux.org](https://github.com/AlmaLinux/mirrors/blob/master/mirrors.d/repo.almalinux.org.yml)
- [AlmaLinux Account Services](https://accounts.almalinux.org)
- [Mattermost Chat](https://chat.almalinux.org)
Expand All @@ -33,10 +34,11 @@ We don't currently hold regular meetings, but work asynchronously in mattermost
- DNS
- Servers/basic infrastructure for all other services including but not limited to:
- [almalinux.org](https://almalinux.org)
- [forums](https://forums.almalinux.org)
- [wiki](https://wiki.almalinux.org)
- [git](https://git.almalinux.org)
- [Package Evolution Service (PES)](https://pes.almalinux.org)
- [Bug Reports](https://bugs.almalinux.org)
- [AlmaPeople](https://almapeople.org)

### Help wanted

Expand All @@ -53,12 +55,6 @@ If you would like to help, please join us at [Infrastructure channel](https://ch
- [Andrew Lukoshko](mailto:alukoshko@almalinux.org) - AlmaLinux OS Lead Architect.
- Chat login: [alukoshko](https://chat.almalinux.org/almalinux/messages/@alukoshko)
- GitHub profile: [andrewlukoshko](https://github.com/andrewlukoshko)
- [Stepan Oksanichenko](mailto:soksanichenko@cloudlinux.com) - Package Evolution Service & Mirror Service Developer.
- Chat login: [stepan_oksanichenko](https://chat.almalinux.org/almalinux/messages/@stepan_oksanichenko)
- GitHub profile: [soksanichenko](https://github.com/soksanichenko)
- [Vasiliy Kleschov](mailto:vkleschov@almalinux.org) - Build System Team Lead.
- Chat login: [korulag](https://chat.almalinux.org/almalinux/messages/@korulag)
- GitHub profile: [Korulag](https://github.com/Korulag)
- [Cody Robertson](mailto:crobertson@almalinux.org)
- Chat login: [codyr](https://chat.almalinux.org/almalinux/messages/@codyr)
- GitHub profile: [codyro](https://github.com/codyro)
129 changes: 129 additions & 0 deletions docs/sigs/infrastructure/almapeople.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,129 @@
---
title: Using almapeople.org
description: How to obtain and use your personal space on almapeople.org.
---

# almapeople.org

This page covers the details on how to obtain and use your personal space on almapeople.org, a site where AlmaLinux contributors can upload files to share with the world.

## Forbidden contents

Do NOT distribute anything on almapeople.org that AlmaLinux itself cannot distribute for legal reasons. Nothing that infringes on copyright or trademark, nothing that AlmaLinux is barred from redistributing, and nothing that violates the [AlmaLinux Code of Conduct](https://almalinux.org/code-of-conduct/).

Also do not distribute anything that violates AlmaLinux's [trademark usage policy](https://almalinux.org/p/the-almalinux-os-trademark-usage-policy/).

Do NOT upload your private SSH keys or private keys of any kind.

## Accessing your almapeople.org space

You need an AlmaLinux account and meet the following criteria:

- Active AlmaLinux OS Foundation membership.
- At least one approved SIG group (currently `almalinux_sigs`).

Manage your account and group memberships at [accounts.almalinux.org](https://accounts.almalinux.org). If you need to join a group, ask your SIG lead.

### Generate an SSH key

If you don't already have one:

```sh
ssh-keygen -t ed25519 -C "your@email.example"
```

This creates `~/.ssh/id_ed25519` (private — never share this) and `~/.ssh/id_ed25519.pub` (public).

### Upload your public key to AlmaLinux accounts

Log in to [accounts.almalinux.org](https://accounts.almalinux.org), edit your user profile, and paste the contents of `~/.ssh/id_ed25519.pub` under **SSH public keys**. Multiple keys are supported.

Your authorized keys on almapeople.org come from your AlmaLinux account and only your AlmaLinux account. There is no separate settings page on almapeople.org. To rotate or revoke a key, update it at [https://accounts.almalinux.org](https://accounts.almalinux.org).

### Verify the host key

The first time you connect, SSH will show you a host key fingerprint. Confirm it matches before accepting it. The current fingerprints are published at TODO: pending.

If a fingerprint changes unexpectedly, do not connect; report it to the infra team.

### Connect

```sh
ssh <your-username>@almapeople.org
```

Use your AlmaLinux account username, not your local username.

### Set up your public_html directory

```sh
mkdir ~/public_html
chmod 755 ~/public_html
```

Anything in `~/public_html/` is served at:

```
https://<your-username>.almapeople.org/
```

So if your AlmaLinux account username is `jonathan`:

```
~/public_html/index.html -> https://jonathan.almapeople.org/
~/public_html/files/notes.txt -> https://jonathan.almapeople.org/files/notes.txt
```

The apex site, [almapeople.org](https://almapeople.org), lists every contributor with content in their `public_html`. The list regenerates hourly.

## Common answers

Each contributor has 100 GB of quota-controlled space.

```sh
quota -s
```

If you run out of space, you should clean up files you don't need. If you cannot clean anything up, you should contact the AlmaLinux Infrastructure team to raise your quota.

Files need to be world-readable for Apache to serve them: at least mode `644` for files and `755` for directories. The server umask is `022` so anything created on the server is fine by default. If you transfer files from a machine with a tighter umask, force sane modes:

```sh
rsync -avz --chmod=Du=rwx,Dgo=rx,Fu=rw,Fgo=r site/ user@almapeople.org:public_html/
```

To make a publicly viewable space, create a `public_html` directory and set its permissions to `755`.

Everything in `public_html` is public. Do not put anything sensitive there. Keep private files in `~/private/` or anywhere outside `public_html` — Apache will not serve them. Keep in mind this should still not be treated as truly private space.

almapeople.org is NOT to be used for development, build infrastructure, CI workers, long-running daemons, or git repository hosting. `/home` is mounted `noexec`, so binaries you upload cannot be run. There is no git web interface; use [git.almalinux.org](https://git.almalinux.org) for repositories.

Server-side code execution is disabled. PHP, CGI, SSI, mod_perl, and mod_ruby are not installed and are explicitly blocked at the Apache level. Files with `.php`, `.cgi`, `.pl`, `.py`, `.rb`, `.asp`, or `.jsp` extensions are served as plain text. `.htaccess` is honored only for `FileInfo`, `AuthConfig`, and `Indexes` directives.

DO NOT try to use `sudo`. You do not have sudo access.

Upload files using `scp`, `sftp`, or `rsync`. For most workflows, rsync over SSH is the right tool:

```sh
rsync -avz --delete site/ <your-username>@almapeople.org:public_html/
```

`--delete` mirrors the local tree exactly. Drop it to add files without removing existing ones. Any standard SFTP client also works — WinSCP, Cyberduck, FileZilla, lftp.

If you are removed from the gating AlmaLinux account groups, your SSH access is revoked at the next deploy and your subdomain returns 404. Your files remain on disk; if you rejoin the groups later, content is restored automatically. To have your data deleted, contact the infra team.

## Policies

### Resource use

Each user session has soft caps applied via systemd:

- Memory: 512 MB soft / 1 GB hard
- Maximum processes: 64
- CPU weight: 50 (half of system default)

These exist to keep one user from accidentally disrupting others. If you find yourself bumping into them, the kind of work you are doing probably belongs somewhere other than almapeople.org.

### Reporting issues

For service issues, security concerns, key-fingerprint anomalies, or quota requests, open an issue against the AlmaLinux infra project or reach out in the [AlmaLinux community chat](https://chat.almalinux.org/almalinux/channels/infrastructure).
Loading