From 4bccd96e269accbffe0801583a4be4157228b566 Mon Sep 17 00:00:00 2001
From: Peter Palfrader <peter@palfrader.org>
Date: Mon, 11 Mar 2019 19:48:54 +0100
Subject: [PATCH] some updates to the host retirement procedure

---
 tsa/howto/retire-a-host.creole | 16 +++++++---------
 1 file changed, 7 insertions(+), 9 deletions(-)

diff --git a/tsa/howto/retire-a-host.creole b/tsa/howto/retire-a-host.creole
index b546b978..f4564a38 100644
--- a/tsa/howto/retire-a-host.creole
+++ b/tsa/howto/retire-a-host.creole
@@ -1,11 +1,9 @@
 = Decommissioning a host =
 
-* stop the VM: virsh destroy $host
-* undefine it: virsh undefine $host
-* remove the LVM logical volumes
-* remove it from the tor-virt git
-* remove it from ud-ldap
-* on pauli:
-** puppetca revoke $host.torproject.org
-** puppetca clean $host.torproject.org
-** puppet node clean $host.torproject.org
+* if applicable, stop the VM: virsh destroy $host
+* if applicable, undefine it: virsh undefine $host
+* if applicable, remove the LVM logical volumes or virtual disk files
+* remove it from ud-ldap: the host entry and any @<host> group memberships there might be as well as any sudo passwords users might have configured for that host
+* if it has any associated records in tor-dns/domains or auto-dns, remove it from there too
+* on pauli:   read x ; puppet node clean $x.torproject.org && puppet node deactivate $x.torproject.org
+* grep the tor-puppet repo for the host (and maybe its IP addresses) and clean up
-- 
GitLab