gitlabFork/ISPConfig3.git - Solinfo Gitblit

			@@ -29,7 +29,23 @@
			*/

			class installer_dist extends installer_base {


			public function __construct() {
			//** check apache modules */
			$mods = getapachemodules();
			if(in_array('authz_compat', $mods, true)) {
			swriteln($inst->lng(' WARNING! You are using mod_authz_compat.'));
			swriteln($inst->lng(' Please make sure that your apache config uses the new auth syntax:'));
			swriteln($inst->lng(' <Directory />'));
			swriteln($inst->lng(' Options None'));
			swriteln($inst->lng(' AllowOverride None'));
			swriteln($inst->lng(' Require all denied'));
			swriteln($inst->lng(' </Directory>'."\n"));

			swriteln($inst->lng(' If it uses the old syntax (deny from all) ISPConfig would fail to work.'));
			}
			}

			public function configure_mailman($status = 'insert') {
			global $conf;

			@@ -109,11 +125,12 @@

			//* Create aliasaes
			exec('/usr/lib/mailman/bin/genaliases 2>/dev/null');
			if(is_file('/var/lib/mailman/data/virtual-mailman')) exec('postmap /var/lib/mailman/data/virtual-mailman');
			}

			function configure_postfix($options = '')
			{
			global $conf;
			global $conf,$autoinstall;
			$cf = $conf['postfix'];
			$config_dir = $cf['config_dir'];

			@@ -240,8 +257,13 @@

			if(!stristr($options, 'dont-create-certs')) {
			//* Create the SSL certificate
			$command = 'cd '.$config_dir.'; '
			.'openssl req -new -outform PEM -out smtpd.cert -newkey rsa:2048 -nodes -keyout smtpd.key -keyform PEM -days 365 -x509';
			if(AUTOINSTALL){
			$command = 'cd '.$config_dir.'; '
			."openssl req -new -subj '/C=".escapeshellcmd($autoinstall['ssl_cert_country'])."/ST=".escapeshellcmd($autoinstall['ssl_cert_state'])."/L=".escapeshellcmd($autoinstall['ssl_cert_locality'])."/O=".escapeshellcmd($autoinstall['ssl_cert_organisation'])."/OU=".escapeshellcmd($autoinstall['ssl_cert_organisation_unit'])."/CN=".escapeshellcmd($autoinstall['ssl_cert_common_name'])."' -outform PEM -out smtpd.cert -newkey rsa:4096 -nodes -keyout smtpd.key -keyform PEM -days 3650 -x509";
			} else {
			$command = 'cd '.$config_dir.'; '
			.'openssl req -new -outform PEM -out smtpd.cert -newkey rsa:4096 -nodes -keyout smtpd.key -keyform PEM -days 3650 -x509';
			}
			exec($command);

			$command = 'chmod o= '.$config_dir.'/smtpd.key';
			@@ -427,7 +449,6 @@
			'virtual_transport = dovecot',
			'smtpd_sasl_type = dovecot',
			'smtpd_sasl_path = private/auth',
			'receive_override_options = no_address_mappings'
			);

			// Make a backup copy of the main.cf file
			@@ -479,13 +500,14 @@
			$content = str_replace('{mysql_server_ispconfig_password}', $conf['mysql']['ispconfig_password'], $content);
			$content = str_replace('{mysql_server_database}', $conf['mysql']['database'], $content);
			$content = str_replace('{mysql_server_host}', $conf['mysql']['host'], $content);
			$content = str_replace('{server_id}', $conf['server_id'], $content);
			wf("$config_dir/$configfile", $content);

			exec("chmod 600 $config_dir/$configfile");
			exec("chown root:root $config_dir/$configfile");

			// Dovecot shall ignore mounts in website directory
			exec("doveadm mount add '/srv/www/*' ignore");
			if(is_installed('doveadm')) exec("doveadm mount add '/srv/www/*' ignore > /dev/null 2> /dev/null");

			}

			@@ -660,10 +682,12 @@
			$vhost_conf_dir = $conf['apache']['vhost_conf_dir'];
			$vhost_conf_enabled_dir = $conf['apache']['vhost_conf_enabled_dir'];

			//copy('tpl/apache_ispconfig.conf.master',$vhost_conf_dir.'/ispconfig.conf');
			$content = rfsel($conf['ispconfig_install_dir'].'/server/conf-custom/install/apache_ispconfig.conf.master', 'tpl/apache_ispconfig.conf.master');
			$tpl = new tpl('apache_ispconfig.conf.master');
			$tpl->setVar('apache_version',getapacheversion());

			$records = $this->db->queryAllRecords('SELECT * FROM '.$conf['mysql']['master_database'].'.server_ip WHERE server_id = '.$conf['server_id']." AND virtualhost = 'y'");

			$ip_addresses = array();

			if(is_array($records) && count($records) > 0) {
			foreach($records as $rec) {
			if($rec['ip_type'] == 'IPv6') {
			@@ -676,15 +700,17 @@
			foreach($ports as $port) {
			$port = intval($port);
			if($port > 0 && $port < 65536 && $ip_address != '') {
			$content .= 'NameVirtualHost '.$ip_address.":".$port."\n";
			$ip_addresses[] = array('ip_address' => $ip_address, 'port' => $port);
			}
			}
			}
			}
			}

			$content .= "\n";
			wf($vhost_conf_dir.'/ispconfig.conf', $content);

			if(count($ip_addresses) > 0) $tpl->setLoop('ip_adresses',$ip_addresses);

			wf($vhost_conf_dir.'/ispconfig.conf', $tpl->grab());
			unset($tpl);

			if(!@is_link($vhost_conf_enabled_dir."/000-ispconfig.conf")) {
			exec("ln -s ".$vhost_conf_dir."/ispconfig.conf ".$vhost_conf_enabled_dir."/000-ispconfig.conf");
			@@ -1003,12 +1029,32 @@
			$this->db->query($sql);
			}

			//* Chmod the files
			$command = "chmod -R 750 $install_dir";
			// chown install dir to root and chmod 755
			$command = 'chown root:root '.$install_dir;
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");
			$command = 'chmod 755 '.$install_dir;
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");

			//* chown the files to the ispconfig user and group
			$command = "chown -R ispconfig:ispconfig $install_dir";
			//* Chmod the files and directories in the install dir
			$command = 'chmod -R 750 '.$install_dir.'/*';
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");

			//* chown the interface files to the ispconfig user and group
			$command = 'chown -R ispconfig:ispconfig '.$install_dir.'/interface';
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");

			//* chown the server files to the root user and group
			$command = 'chown -R root:root '.$install_dir.'/server';
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");

			//* chown the security files to the root user and group
			$command = 'chown -R root:root '.$install_dir.'/security';
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");

			//* chown the security directory and security_settings.ini to root:ispconfig
			$command = 'chown root:ispconfig '.$install_dir.'/security/security_settings.ini';
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");
			$command = 'chown root:ispconfig '.$install_dir.'/security';
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");

			//* Make the global language file directory group writable
			@@ -1074,6 +1120,9 @@
			$command = 'usermod -a -G ispapps '.$conf['nginx']['user'];
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");
			}
			// add nobody user to www group, as the default php-fpm pool from opensuse runs as nobody
			$command = 'usermod -a -G www nobody';
			caselog($command.' &> /dev/null', __FILE__, __LINE__, "EXECUTED: $command", "Failed to execute the command $command");
			}

			//* Make the shell scripts executable
			@@ -1089,31 +1138,32 @@


			// Dont just copy over the virtualhost template but add some custom settings

			$content = rfsel($conf['ispconfig_install_dir'].'/server/conf-custom/install/apache_ispconfig.vhost.master', "tpl/apache_ispconfig.vhost.master");
			$content = str_replace('{vhost_port}', $conf['apache']['vhost_port'], $content);
			$tpl = new tpl('apache_ispconfig.vhost.master');
			$tpl->setVar('vhost_port',$conf['apache']['vhost_port']);

			// comment out the listen directive if port is 80 or 443
			if($conf['apache']['vhost_port'] == 80 or $conf['apache']['vhost_port'] == 443) {
			$content = str_replace('{vhost_port_listen}', '#', $content);
			$tpl->setVar('vhost_port_listen','#');
			} else {
			$content = str_replace('{vhost_port_listen}', '', $content);
			$tpl->setVar('vhost_port_listen','');
			}

			if(is_file('/usr/local/ispconfig/interface/ssl/ispserver.crt') && is_file('/usr/local/ispconfig/interface/ssl/ispserver.key')) {
			$content = str_replace('{ssl_comment}', '', $content);
			if(is_file($install_dir.'/interface/ssl/ispserver.crt') && is_file($install_dir.'/interface/ssl/ispserver.key')) {
			$tpl->setVar('ssl_comment','');
			} else {
			$content = str_replace('{ssl_comment}', '#', $content);
			$tpl->setVar('ssl_comment','#');
			}
			if(is_file($install_dir.'/interface/ssl/ispserver.crt') && is_file($install_dir.'/interface/ssl/ispserver.key') && is_file($install_dir.'/interface/ssl/ispserver.bundle')) {
			$content = str_replace('{ssl_bundle_comment}', '', $content);
			$tpl->setVar('ssl_bundle_comment','');
			} else {
			$content = str_replace('{ssl_bundle_comment}', '#', $content);
			$tpl->setVar('ssl_bundle_comment','#');
			}

			$tpl->setVar('apache_version',getapacheversion());

			$content = $tpl->grab();
			$content = str_replace('/var/www/', '/srv/www/', $content);

			wf("$vhost_conf_dir/ispconfig.vhost", $content);
			wf($vhost_conf_dir.'/ispconfig.vhost', $content);

			//if(!is_file('/srv/www/php-fcgi-scripts/ispconfig/.php-fcgi-starter')) {
			$content = rfsel($conf['ispconfig_install_dir'].'/server/conf-custom/install/apache_ispconfig_fcgi_starter.master', 'tpl/apache_ispconfig_fcgi_starter.master');
			@@ -1250,6 +1300,9 @@

			//* Remove Domain module as its functions are available in the client module now
			if(@is_dir('/usr/local/ispconfig/interface/web/domain')) exec('rm -rf /usr/local/ispconfig/interface/web/domain');

			// Add symlink for patch tool
			if(!is_link('/usr/local/bin/ispconfig_patch')) exec('ln -s /usr/local/ispconfig/server/scripts/ispconfig_patch /usr/local/bin/ispconfig_patch');


			}