From dab85326e23b684ecf731ce5be6b67a563a0f09f Mon Sep 17 00:00:00 2001 From: tbrehm <t.brehm@ispconfig.org> Date: Sun, 08 Feb 2009 09:56:49 -0500 Subject: [PATCH] Updated debian and ubuntu installation instructions. --- INSTALL_DEBIAN_LENNY.txt | 122 +++++++++++++++++++++++++++------------- 1 files changed, 82 insertions(+), 40 deletions(-) diff --git a/INSTALL_DEBIAN_LENNY.txt b/INSTALL_DEBIAN_LENNY.txt index 75eb86d..4c9faac 100644 --- a/INSTALL_DEBIAN_LENNY.txt +++ b/INSTALL_DEBIAN_LENNY.txt @@ -11,12 +11,13 @@ /bin/hostname # it should return something like "ispconfig.example.com" -# if not, then we assign hostname (for example ispconfig): +# if not, then we assign a hostname (for example ispconfig): echo ispconfig.example.com > /etc/hostname vi /etc/hosts -and add line similar but appropriate: + +# and add lines similar but appropriate: 127.0.0.1 localhost.localdomain localhost 192.168.0.100 ispconfig.example.com ispconfig @@ -29,17 +30,17 @@ apt-get install ssh openssh-server -opt0.2) Optionally if you are not running in virtual machine you can set server clocksync via NTP. Virtual quests get this from host. +opt0.2) Optionally if you are not running in virtual machine you can set server clocksync via NTP. Virtual quests get this from the host. apt-get install ntp ntpdate -# Then into real deal +# Next is the real deal 1) Install Postfix, Courier, Saslauthd, MySQL, phpMyAdmin, rkhunter, binutils with the following command line (on one line!): -apt-get install postfix postfix-mysql postfix-doc mysql-client mysql-server courier-authdaemon courier-authlib-mysql courier-pop courier-pop-ssl courier-imap courier-imap-ssl libsasl2 libsasl2-modules libsasl2-modules-sql sasl2-bin libpam-mysql openssl courier-maildrop getmail4 rkhunter binutils +apt-get install postfix postfix-mysql postfix-doc mysql-client mysql-server courier-authdaemon courier-authlib-mysql courier-pop courier-pop-ssl courier-imap courier-imap-ssl libsasl2-2 libsasl2-modules libsasl2-modules-sql sasl2-bin libpam-mysql openssl courier-maildrop getmail4 rkhunter binutils # Answer the questions from the package manager as follows. @@ -48,7 +49,7 @@ Mail name? <-- server1.mydomain.tld SSL certificate required <-- Ok -...use your own domain name of course ;) +# ...use your own domain name of course ;) @@ -65,6 +66,7 @@ /etc/init.d/mysql restart # Set the mysql database password: +# Again use your own domain name... mysqladmin -u root password yourrootsqlpassword mysqladmin -h ispconfig.local -u root password yourrootsqlpassword @@ -77,22 +79,53 @@ -3) Install apache, PHP5, phpmyadmin, better fastCGI, suexec, Pear and mrypt (1 line!): +3) Install apache, PHP5, phpmyadmin, better fastCGI, suexec, Pear and mcrypt (1 line!): -apt-get install apache2 apache2.2-common apache2-doc apache2-mpm-prefork apache2-utils libexpat1 ssl-cert libapache2-mod-php5 php5 php5-common php5-gd php5-mysql php5-imap phpmyadmin php5-cli libapache2-mod-fcgid apache2-suexec php-pear php-auth php5-mcrypt mcrypt +apt-get install apache2 apache2.2-common apache2-doc apache2-mpm-prefork apache2-utils libexpat1 ssl-cert libapache2-mod-php5 php5 php5-common php5-gd php5-mysql php5-imap phpmyadmin php5-cli php5-cgi libapache2-mod-fcgid apache2-suexec php-pear php-auth php5-mcrypt mcrypt -# When myphpadmin is asking wether to configure itself automagigally, select "Apache2" +# When phpMyAdmin is asking weather to configure itself automatically, select "Apache2" # Then run the following to enable the Apache modules suexec, rewrite and ssl: -a2enmod suexec rewrite ssl +a2enmod suexec rewrite ssl actions include -opt3.1) Optionally install some imagemanipulation capabilities to make advanced webdesigners happy +# Secure phpMyAdmin by deleting setuppassword-file +# and removing/commenting Setup Authorization from apache.conf + +rm /etc/phpmyadmin/htpasswd.setup + +vi /etc/phpmyadmin/apache.conf + +# delete/comment following lines (between the ----- lines): +------------------------------------------------------ + # Authorize for setup + <Files setup.php> + # For Apache 1.3 and 2.0 + <IfModule mod_auth.c> + AuthType Basic + AuthName "phpMyAdmin Setup" + AuthUserFile /etc/phpmyadmin/htpasswd.setup + </IfModule> + # For Apache 2.2 + <IfModule mod_authn_file.c> + AuthType Basic + AuthName "phpMyAdmin Setup" + AuthUserFile /etc/phpmyadmin/htpasswd.setup + </IfModule> + Require valid-user + </Files> +------------------------------------------------------ + + +opt3.1) Optionally install some image manipulation capabilities to make advanced web designers happy apt-get install php5-imagick imagemagick +# restart apache before continuing +/etc/init.d/apache2 restart + 4) Install pure-ftpd and quota @@ -118,18 +151,18 @@ apt-get install g++ libc6 gcc gawk make texinfo libmysqlclient15-dev cd /tmp -wget http://heanet.dl.sourceforge.net/sourceforge/mydns-ng/mydns-1.2.8.4.tar.gz -tar xvfz mydns-1.2.8.4.tar.gz +wget http://heanet.dl.sourceforge.net/sourceforge/mydns-ng/mydns-1.2.8.15.tar.gz +tar xvfz mydns-1.2.8.15.tar.gz cd mydns-1.2.8 ./configure make make install -Now create the start / stop script for mydns: +# Now create the start / stop script for mydns: vi /etc/init.d/mydns -and enter the following lines (between the ----- lines): +# and enter the following lines (between the ----- lines): ------------------------------------------------------ #! /bin/sh @@ -190,7 +223,7 @@ exit 0 --------------------------------------------------------------------------- -now execute: +# now execute: chmod +x /etc/init.d/mydns update-rc.d mydns defaults @@ -199,21 +232,37 @@ apt-get install vlogger webalizer +7) Install Jailkit (optional, only needed if you want to use chrroting for SSH users) -7) Install ISPConfig 3 +apt-get install build-essential autoconf automake1.9 libtool flex bison +cd /tmp +wget http://olivier.sessink.nl/jailkit/jailkit-2.5.tar.gz +tar xvfz jailkit-2.5.tar.gz +cd jailkit-2.5 +./configure +make +make install +rm -rf jailkit-2.5* -There are two possile scenarios, but not both: -7.1) Install the latest released version -7.2) Install directly from SVN +8) Install fail2ban (optional but recomended, because the monitor tries to show the log) +More info at: http://www.howtoforge.com/fail2ban_debian_etch -7.1) Installation of last version from tar.gz +apt-get install fail2ban + +9) Install ISPConfig 3 + +# There are two possile scenarios, but not both: +9.1) Install the latest released version +9.2) Install directly from SVN + +9.1) Installation of last version from tar.gz cd /tmp - wget http://www.ispconfig.org/downloads/ISPConfig-3.0.0.6-beta.tar.gz - tar xvfz ISPConfig-3.0.0.7-beta.tar.gz + wget http://www.ispconfig.org/downloads/ISPConfig-3.0.0.8-rc1.tar.gz + tar xvfz ISPConfig-3.0.0.8-rc1.tar.gz cd ispconfig3_install/install/ -7.2) Installation from SVN +9.2) Installation from SVN apt-get install subversion cd /tmp @@ -221,22 +270,22 @@ cd trunk/install -7.1+7.2) Now proceed with the ISPConfig installation. +9.1+9.2) Now proceed with the ISPConfig installation. -Now start the installation process by executing: +# Now start the installation process by executing: php -q install.php -The installer will configure all services like postfix, sasl, courier, etc. for you. A manual setup as required for ISPConfig 2 (perfect setup guides) is not nescessary. To login to the ISPConfig controlpanel, open the following URL in your browser (replace the IP to match your settings!): +# The installer will configure all services like postfix, sasl, courier, etc. for you. A manual setup as required for ISPConfig 2 (perfect setup guides) is not nescessary. To login to the ISPConfig controlpanel, open the following URL in your browser (replace the IP to match your settings!): http://192.168.0.100:8080/ -the default login is: +# the default login is: user: admin password: admin -In case you get a permission denied error from apache, please restart the apache webserver process. +# In case you get a permission denied error from apache, please restart the apache webserver process. @@ -271,15 +320,8 @@ ---------------------------------------------------------------------------------------------------------- -Installing Jailkit: -apt-get install build-essential autoconf automake1.9 libtool flex bison -cd /tmp -wget http://olivier.sessink.nl/jailkit/jailkit-2.5.tar.gz -tar xvfz jailkit-2.5.tar.gz -cd jailkit-2.5 -./configure -make -make install -rm -rf jailkit-2.5* ----------------------------------------------------------------------------------------------------------- +Optional recommended packages: + +denyhosts - a utility to help sys admins thwart ssh crackers +rsync - fast remote file copy program (for backup) \ No newline at end of file -- Gitblit v1.9.1