ADJ網路實驗室
打印

[分享] Ubuntu 7.10 Server 建置安裝筆記

Ubuntu 7.10 Server 建置安裝筆記

安裝步驟:
  • 放入安裝光碟,按下F2選繁體中文
    • keyboard layout  選<否>
    • U.S English
    • U.S English
  • 選網路介面卡
  • 主機名稱
  • 磁碟分割
    • 導引使用整顆磁碟
    • 寫入磁碟選<是>
  • 設置時鐘 UTC
  • 使用者帳號密碼
  • proxy 空白不選按下繼續
  • 選LAMP server
    • 輸入mysql root的密碼
    • 拿出CD 重新開機

設定環境:
  • Enable The root Account
    #sudo passwd root
    #su

  • Install The SSH Server
    #apt-get install ssh openssh-server
    #/etc/ssh/sshd_config

  • Install vim-full
    #apt-get install vim-full

  • Configure The Network
    #vi /etc/network/interfaces.
    複製內容到剪貼板
    代碼:
    # This file describes the network interfaces available on your system
    # and how to activate them. For more information, see interfaces(5).

    # The loopback network interface
    auto lo
    iface lo inet loopback

    # The primary network interface
    auto eth0
    iface eth0 inet static
            address 192.168.0.100
            netmask 255.255.255.0
            network 192.168.0.0
            broadcast 192.168.0.255
            gateway 192.168.0.1

    /etc/init.d/networking restart

  • Set Hostname:
    #vi /etc/hosts
    127.0.0.1       localhost.localdomain   localhost
    192.168.0.100   server1.example.com     server1

    #echo server1.example.com > /etc/hostname
    #/etc/init.d/hostname.sh start
    #hostname
    #hostname -f

  • Software Upgrade:
    #apt-get update
    #apt-get upgrade

    #apt-get install binutils cpp fetchmail flex gcc libarchive-zip-perl libc6-dev libcompress-zlib-perl libdb4.3-dev libpcre3 libpopt-dev lynx m4 make ncftp nmap openssl perl perl-modules unzip zip zlib1g-dev autoconf automake1.9 libtool bison autotools-dev g++ build-essential

  • Setting Quota
    #apt-get install quota
    #vi /etc/fstab
    複製內容到剪貼板
    代碼:
    UUID=9fc157ff-975c-4f20-9fef-6a70085abdbd /               ext3    defaults,errors=remount-ro,usrquota,grpquota 0       1
    #touch /quota.user /quota.group
    #chmod 600 /quota.*
    #mount -o remount /
    #quotacheck -avugm
    #quotaon -avug

  • Setting DNS Server
    #apt-get install bind9
    #/etc/init.d/bind9 stop
    #vi /etc/default/bind9
    OPTIONS="-u bind -t /var/lib/named"
    #mkdir -p /var/lib/named/etc
    #mkdir /var/lib/named/dev
    #mkdir -p /var/lib/named/var/cache/bind
    #mkdir -p /var/lib/named/var/run/bind/run
    #mv /etc/bind /var/lib/named/etc
    #ln -s /var/lib/named/etc/bind /etc/bind
    #mknod /var/lib/named/dev/null c 1 3
    #mknod /var/lib/named/dev/random c 1 8
    #chmod 666 /var/lib/named/dev/null /var/lib/named/dev/random
    #chown -R bind:bind /var/lib/named/var/*
    #chown -R bind:bind /var/lib/named/etc/bind
    #vi /etc/default/syslogd
    SYSLOGD="-a /var/lib/named/dev/log"
    #/etc/init.d/sysklogd restart
    #/etc/init.d/bind9 start
    #vi /etc/named.conf
    #cp db.local db.xxx.com.tw

  • Install MySQL Server
    #apt-get install mysql-server mysql-client libmysqlclient15-dev
    #vi /etc/mysql/my.cnf
    複製內容到剪貼板
    代碼:
    #bind-address           = 127.0.0.1
    #/etc/init.d/mysql restart

  • Install Postfix
    #apt-get install postfix libsasl2-2 sasl2-bin libsasl2-modules libdb3-util procmail
    #dpkg-reconfigure postfix
    複製內容到剪貼板
    代碼:
    General type of mail configuration: <-- Internet Site
    System mail name: <-- server1.example.com
    Root and postmaster mail recipient: <-- [blank]
    Other destinations to accept mail for (blank for none): <-- server1.example.com, localhost.example.com, localhost.localdomain, localhost
    Force synchronous updates on mail queue? <-- No
    Local networks: <-- 127.0.0.0/8
    Use procmail for local delivery? <-- Yes
    Mailbox size limit: <-- 0
    Local address extension character: <-- +
    Internet protocols to use: <-- all
    postconf -e 'smtpd_sasl_local_domain ='
    postconf -e 'smtpd_sasl_auth_enable = yes'
    postconf -e 'smtpd_sasl_security_options = noanonymous'
    postconf -e 'broken_sasl_auth_clients = yes'
    postconf -e 'smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination'
    postconf -e 'inet_interfaces = all'
    #echo 'pwcheck_method: saslauthd' >> /etc/postfix/sasl/smtpd.conf
    #echo 'mech_list: plain login' >> /etc/postfix/sasl/smtpd.conf
    #mkdir /etc/postfix/ssl
    #cd /etc/postfix/ssl/
    #openssl genrsa -des3 -rand /etc/hosts -out smtpd.key 1024
    #chmod 600 smtpd.key
    #openssl req -new -key smtpd.key -out smtpd.csr
    #openssl x509 -req -days 3650 -in smtpd.csr -signkey smtpd.key -out smtpd.crt
    #openssl rsa -in smtpd.key -out smtpd.key.unencrypted
    #mv -f smtpd.key.unencrypted smtpd.key
    #openssl req -new -x509 -extensions v3_ca -keyout cakey.pem -out cacert.pem -days 3650
    #postconf -e 'myhostname = server1.example.com'
    #postconf -e 'smtpd_tls_auth_only = no'
    #postconf -e 'smtp_use_tls = yes'
    #postconf -e 'smtpd_use_tls = yes'
    #postconf -e 'smtp_tls_note_starttls_offer = yes'
    #postconf -e 'smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key'
    #postconf -e 'smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.crt'
    #postconf -e 'smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem'
    #postconf -e 'smtpd_tls_loglevel = 1'
    #postconf -e 'smtpd_tls_received_header = yes'
    #postconf -e 'smtpd_tls_session_cache_timeout = 3600s'
    #postconf -e 'tls_random_source = dev:/dev/urandom'
    #/etc/init.d/postfix restart
    #mkdir -p /var/spool/postfix/var/run/saslauthd
    #vi /etc/default/saslauthd
    OPTIONS="-c -m /var/spool/postfix/var/run/saslauthd -r"
    #/etc/init.d/saslauthd start
    #apt-get install dovecot-common dovecot-pop3d
    #protocols = pop3
    #mail_location = mbox:~/mail:INBOX=/var/spool/mail/%u
    #/etc/init.d/dovecot start

  • Install Apache/PHP5:
    #apt-get install apache2 apache2-doc apache2-mpm-prefork apache2-utils libexpat1 ssl-cert
    #apt-get install libapache2-mod-php5 php5 php5-common php5-curl php5-dev php5-gd php5-idn php-pear php5-imagick php5-imap php5-json php5-mcrypt php5-memcache php5-mhash php5-ming php5-mysql php5-ps php5-pspell php5-recode php5-snmp php5-sqlite php5-tidy php5-xmlrpc php5-xsl
    #vi /etc/apache2/mods-available/dir.conf
              DirectoryIndex index.html index.htm index.shtml index.cgi index.php index.php3 index.pl index.xhtml
    a2enmod ssl
    a2enmod rewrite
    a2enmod suexec
    a2enmod include
    /#etc/init.d/apache2 force-reload

  • Install Proftpd
    #apt-get install proftpd ucf
    #vi /etc/hosts
    ::1     ip6-localhost ip6-loopback server1.example.com
    #vi /etc/proftpd/proftpd.conf
    UseIPv6                         off
    DefaultRoot ~
    IdentLookups off
    ServerIdent on "FTP Server ready."
    #ln -s /etc/proftpd/proftpd.conf /etc/proftpd.conf
    #/etc/init.d/proftpd restart

  • Install Other Server
    #apt-get install webalizer
    #apt-get install ntp ntpdate
    #apt-get install libhtml-parser-perl libdb-file-lock-perl libnet-dns-perl

  • Install openwebmail
    #wget http://openwebmail.org/openwebma ... webmail-2.52.tar.gz
    #apt-get install perl-suid
    #/usr/lib/apache2/suexec 改名
    #apt-get install libapache2-mod-perl2
    #vi /etc/apache2/apache2.conf
    #AddHandler cgi-script .cgi .pl
    #vi /etc/apache2/sites-available/default
    複製內容到剪貼板
    代碼:
    ScriptAlias /cgi-bin/ /var/www/cgi-bin/
    <Directory /var/www/cgi-bin>
    AllowOverride None
    Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
    Addhandler cgi-script .cgi .pl
    Order allow,deny
    Allow from all
    </Directory>
    #vi /var/www/cgi-bin/openwebmail/etc/default/auth_unix.conf
    a. passwdfile_encrypted /etc/shadow
    b. passwdmkdb none
    vi openwebmail.conf
    domainnames             xxx.com.tw
    auth_module             auth_unix.pl
    mailspooldir            /var/spool/mail
    ow_cgidir               /var/www/cgi-bin/openwebmail
    ow_cgiurl               /cgi-bin/openwebmail
    ow_htmldir              /var/www/data/openwebmail
    ow_htmlurl              /data/openwebmail
    logfile                 /var/log/openwebmail.log

    #vi dbm.conf
    dbm_ext .pag
    dbmopen_ext none
    dbmopen_haslock no
    #openwebmail-tool.pl –init






TOP

ARTERY.cn