Archive for 'Ngoprek'
Ternyata partisi /usr NS full
March 25th, 2004. Published under Ngoprek, Work. No Comments.
Setelah diotak-atik sana-sini, mana kira-kira yang bisa dipindah, akhirnya /usr/src dipindah ke /data/src.
Selanjutnya /data/src di mount ke /usr/src, beres 
Kalau di symlink biasa, hasilnya ketika proses installworld kadang muncul pesan error yg disebabkan masalah symlink tsb.
Setahun sebelumnya pernah mengalami masalah yang sama, waktu itu solusinya /usr/ports dipindah ke /data/ports + distfilesnya (sebelumnya distfiles pernah dipindah ke /data). Memang besarnya /usr tidak diprediksikan akan sebesar ini, karena dulunya server ini dedicated hanya utk DNS server saja, yang pasti hanya perlu menginstall bind saja. Tapi sejalan dengan fungsi server yang semakin kompleks, /usr sudah tidak mampu lagi menampung file-file yang terus ditambahkan :biggrin: :biggrin:
Postfix main.cf
March 17th, 2004. Published under Ngoprek. No Comments.
Konfigurasi postfix + LDAP + GOsa.
# LOCAL PATHNAME INFORMATION queue_directory = /var/spool/postfix command_directory = /usr/local/sbin daemon_directory = /usr/local/libexec/postfix # QUEUE AND PROCESS OWNERSHIP mail_owner = postfix default_privs = nobody # INTERNET HOST AND DOMAIN NAMES myhostname = ns.comlabs.itb.ac.id mydomain = comlabs.itb.ac.id # SENDING MAIL myorigin = $myhostname # RECEIVING MAIL inet_interfaces = all mydestination = $myhostname ns.tpb.itb.ac.id ns.comlabs.itb.ac.id localhost # REJECTING MAIL FOR UNKNOWN LOCAL USERS local_recipient_maps = unixasswd.byname $alias_maps $virtual_maps unknown_local_recipient_reject_code = 450 # TRUST AND RELAY CONTROL mynetworks_style = host mynetworks = 167.205.79.4/32, 127.0.0.0/8 relay_domains = $mydestination # INPUT RATE CONTROL in_flow_delay = 1s # ADDRESS REDIRECTION (VIRTUAL DOMAIN) virtualsource_server_host = 127.0.0.1 virtualsource_server_port = 389 virtualsource_bind = no virtualsource_timeout = 5 virtualsource_search_base = dc=gonicus,dc=de virtualsource_query_filter = (&(|(mail=%s)(gosaMailAlternateAddress=%s))(objectClass=gosaAccount)) virtualsource_result_attribute = uid,gosaMailForwardingAddress virtualsource_lookup_wildcards = no virtual_maps = ldap:virtualsource # TRANSPORT MAP # # Insert text from sample-transport.cf if you need explicit routing. default_transport = smtp # ALIAS DATABASE alias_maps = hash:/etc/aliases # DELIVERY TO MAILBOX local_transport = local mail_spool_directory = /var/mail fallback_transport = lmtp:unix:/var/imap/socket/lmtp # JUNK MAIL CONTROLS #header_checks = regexp:/usr/local/etc/postfix/header_checks # FAST ETRN SERVICE fast_flush_domains = $relay_domains # SHOW SOFTWARE VERSION OR NOT smtpd_banner = $myhostname ESMTP $mail_name # PARALLEL DELIVERY TO THE SAME DESTINATION local_destination_concurrency_limit = 2 default_destination_concurrency_limit = 20 # DEBUGGING CONTROL debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin xxgdb $daemon_directory/$process_name $process_id & sleep 5 # INSTALL-TIME CONFIGURATION INFORMATION sendmail_path = /usr/local/sbin/sendmail newaliases_path = /usr/local/bin/newaliases mailq_path = /usr/local/bin/mailq setgid_group = maildrop manpage_directory = /usr/local/man sample_directory = /usr/local/etc/postfix readme_directory = no
Install Desknow
March 16th, 2004. Published under Ngoprek. No Comments.
Installasi Desknow. Tulisan ini diambil dari arsip ngoprek gwe beberapa bulan y.l.
Masih relevan sepertinya, cuman perlu ditambah, bagaimana setup antivirus, antispam (bayesian), webmessenger. Hehe ternyata banyak jg yah 
Source ada di http://www.desknow.com
By Cecep Mahbub (cecep@comlabs.itb.ac.id) Change Log: 2003-07-26 mulai menulis dokumentasi ini 1. Install J2SDK source: http://java.sun.com/j2se/1.4.2/download.html mirror: http://ftp.tpb.itb.ac.id/pub/java/j2sdk-1_4_2-linux-i586.bin $ wget http://ftp.tpb.itb.ac.id/pub/java/j2sdk-1_4_2-linux-i586.bin $ chmod 755 j2sdk-1_4_2-linux-i586.bin $ ./j2sdk-1_4_2-linux-i586.bin # mkdir /home/java # mv j2sdk1.4.2/ /home/java Setting PATH ## file /etc/profile PATH=$PATH:/home/java/j2sdk1.4.2/bin export PATH 2. Installasi Desknow source: http://www.desknow.com/downloads/desknow.tar.gz Cara installasi bisa dibaca di readme.txt $ tar zxvf desknow.tar.gz $ su - # cd desknow_server # mv desknow /var # mv desknowdata /var # mv etc/desknow.conf /etc # mv etc/init.d/desknow /etc/init.d edit /etc/desknow.conf to set the location of your Java Development Kit (1.4.1 or higher is required. Free download at http://java.sun.com) # /var/desknow/bin/configconsole.sh 3. Install PostgreSQL + JDBC driver source: paket standar dari distro Utk distro Trustix: # swup --install postgresql-server postgresql-jdbc Inisialisasi databases # /etc/init.d/postgresql start 4. Setting databases untuk desknow Buat user desknow_server (user utk koneksi ke databases) $ createuser -U postgres --no-adduser --createdb --pwprompt desknow_server Enter password for user \"desknow_server\": Enter it again: Password: --ENTER PASSWD postgres HERE-- CREATE USER Buat database desknow + import sql $ createdb -U desknow_server desknow $ psql -U desknow_server desknow
saslauthd LDAP
March 13th, 2004. Published under Ngoprek. No Comments.
Install ports cyrus-sasl2-saslauthd. Jangan lupa dikompilasi agar support LDAP.
cd /usr/ports/security/cyrus-sasl2-saslauthd make -DWITH_OPENLDAP make install clean
# contoh konfigurasi # files: /usr/local/etc/saslauthd.conf ldap_servers: ldap://localhost/ ldap_scope: sub ldap_search_base: dc=gonicus,dc=de
Test imap:
ns# telnet localhost 143 Trying ::1... Connected to localhost. Escape character is '^]'. * OK ns.comlabs.itb.ac.id Cyrus IMAP4 v2.2.3 server ready 001 login \"cecepmr\" \"cecepmr\" 001 OK User logged in 001 logout * BYE LOGOUT received 001 OK Completed Connection closed by foreign host.
Test pop3:
ns# telnet localhost 110 Trying ::1... Connected to localhost. Escape character is '^]'. +OK ns.comlabs.itb.ac.id Cyrus POP3 v2.2.3 server ready user cecepmr +OK Name is a valid mailbox pass cecepmr +OK Mailbox locked and ready list +OK scan listing follows . ^] telnet> q Connection closed.
saslauthd.conf
March 11th, 2004. Published under Ngoprek. No Comments.
Contoh:
ldap_servers: ldap://localhost/ ldap_bind_dn: cn=imap,ou=Accounts,dc=CHANGE,dc=ME ldap_bind_pw: secret ldap_scope: sub ldap_search_base: ou=Accounts,dc=CHANGE,dc=ME ldap_auth_method: bind ldap_filter: (&(uid=%u)(|(role=mailUser)(role=mailAdmin))) ldap_group_dn: cn=%s,ou=MAILROLE,ou=Roles,dc=CHANGE,dc=ME
Postfix main.cf utk Gosa
March 10th, 2004. Published under Ngoprek. No Comments.
Dapet dari milis gosa@oss.gonicus.de 
Just an example. You need to include something like this. It is no complete main.cf and
it has to be adapted to fit your needs. Especially the insiders stuff - if you need it.
# Virtual source virtualsource_server_host = 10.3.66.11 virtualsource_search_base = dc=gonicus,dc=de virtualsource_query_filter = (&(|(mail=%s)(gosaMailAlternateAddress=%s))(objectClass=gosaAccount)) virtualsource_result_attribute = uid,gosaMailForwardingAddress # Shared Folder + Aliases + Forwardings sharedsource_server_host = 10.3.66.11 sharedsource_search_base = dc=gonicus,dc=de sharedsource_query_filter = (&(|(mail=%s)(gosaMailAlternateAddress=%s))(objectClass=posixGroup)) sharedsource_result_attribute = gosaSharedFolderTarget,gosaMailForwardingAddress # Access Lists for Non Local Delivery acllocal_server_host = 10.3.66.11 acllocal_search_base = dc=gonicus,dc=de acllocal_query_filter = (&(|(mail=%s)(gosaMailAlternateAddress=%s))(gosaMailDeliveryMode=*L*)) acllocal_result_attribute = mail acllocal_result_filter = insiders_only # Map definition virtual_maps = ldap:virtualsource, ldap:sharedsource # For local only delivery smtpd_restriction_classes = insiders_onlyfallback_transport = smtp mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp insiders_only = check_sender_access regexp:/etc/postfix/insiders, reject # For lmtp delivery fallback_transport = smtp mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp
Mengkonfigurasi Cyrus
March 10th, 2004. Published under Ngoprek. No Comments.
Contoh konfigurasi imapd.conf:
postmaster: postmaster configdirectory: /var/imap partition-default: /var/spool/imap admins: cyrus allowanonymouslogin: no allowplaintext: yes sasl_mech_list: PLAIN LOGIN servername: ns.comlabs.itb.ac.id autocreatequota: 10000 reject8bit: no quotawarn: 90 timeout: 30 poptimeout: 10 sasl_pwcheck_method: saslauthd sievedir: /var/imap/sieve sendmail: /usr/local/sbin/sendmail sieve_maxscriptsize: 32 sieve_maxscripts: 5 tls_ca_file: /usr/local/etc/cyrus.pem tls_cert_file: /usr/local/etc/cyrus.pem tls_key_file: /usr/local/etc/cyrus.pem
Direktory yg didefinisikan diatas harus dibuat terlebih dahulu.
mkdir /var/imap chown cyrus:cyrus /var/imap chmod 750 /var/imap mkdir /var/imap/sieve chown cyrus:cyrus /var/imap/sieve chmod 750 /var/imap/sieve mkdir /var/spool/imap chown cyrus:cyrus /var/spool/imap chmod 750 /var/spool/imap
Direktory lain yang diperlukan, bisa dibuat dengan menjalankan perintah mkimap
su - cyrus mkimap
Recent Comments