Index: archive/courier.xml
===================================================================
--- archive/courier.xml (revision 4e48de46ec87726c2f935c0670b5ee21fd02e445)
+++ archive/courier.xml (revision 4e48de46ec87726c2f935c0670b5ee21fd02e445)
@@ -0,0 +1,1090 @@
+
+
+ %general-entities;
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+]>
+
+
+
+
+
+ $LastChangedBy$
+ $Date$
+
+
+ Courier-&courier-version;
+
+
+ Courier MTA
+
+
+
+ Introduction to Courier
+
+ The Courier package contains a Mail
+ Transport Agent (MTA). This is useful for sending email to other users
+ of your host machine. It can also be configured to be a central mail
+ server for your domain or a mail relay agent. The
+ Courier packages also includes a web-based
+ email interface, IMAP, IMAP-SSL, POP3, and POP3-SSL.
+
+ Package Information
+
+
+ Download (HTTP):
+
+
+ Download (FTP):
+
+
+ Download MD5 sum: &courier-md5sum;
+
+
+ Download size: &courier-size;
+
+
+ Estimated disk space required: &courier-buildsize;
+
+
+ Estimated build time: &courier-time;
+
+
+
+ Courier Dependencies
+
+
+
+ Optional
+ or ,
+ ,
+ ,
+ ,
+ ,
+ ,
+
+ ,
+ ,
+ ,
+ ,
+ Netpbm and
+ Mgetty+Sendfax
+
+ User Notes:
+
+
+
+
+
+ Installation of Courier
+
+
+ Courier's tarball must be extracted
+ as an unprivileged user or the configure script will
+ fail.
+
+
+ Before you compile the program, you need to create the
+ courier user and group
+ that is expected to be in place during installation.
+ As the root user, add
+ the courier user and
+ group with the following commands:
+
+groupadd -g 30 courier &&
+useradd -c 'Courier Mail Server' -d /dev/null \
+ -g courier -s /bin/false -u 30 courier
+
+ The install script also expects a bin user. If you already have a
+ user named bin, this
+ step can be safely ignored. If necessary, create the user by
+ issuing the following command as the
+ root user:
+
+useradd -c 'bin' -d /dev/null -g bin -u 1 bin
+
+ Courierfilter requires the directory
+ /var/run/courier to store
+ all the Courier PID and lock files.
+ /var/lock/subsys also must exist
+ for the master lock file for Courier. Issue
+ the following commands as the
+ root user to create these
+ directories:
+
+install -v -d /var/run/courier -o courier -g courier -m755 &&
+install -v -d /var/lock/subsys -o root -g root -m755
+
+ Build Courier as an unprivileged user
+ with the following commands:
+
+./configure --prefix=/usr --libexecdir=/usr/lib/courier \
+ --datadir=/usr/share/courier --sysconfdir=/etc/courier \
+ --localstatedir=/var/lib/courier --with-piddir=/var/run/courier \
+ --with-paranoid-smtpext --disable-autorenamesent \
+ --enable-workarounds-for-imap-client-bugs --with-db=gdbm &&
+make
+
+ Once again, become the root
+ user and install Courier with the following
+ commands:
+
+make install &&
+make install-configure
+
+
+
+
+ Command Explanations
+
+ --libexecdir=/usr/lib/courier: Specifies
+ the directory which contains programs and libraries that should not be
+ directly executed from the command-line.
+
+ --datadir=/usr/share/courier: Specifies the
+ directory where miscellaneous shell scripts,
+ Perl scripts, and data files will be
+ installed.
+
+ --localstatedir=/var/spool/courier:
+ Specifies the directory that will hold the mail queue, and other
+ temporary data.
+
+ --with-piddir=/var/run/courier: Specifies
+ the directory where Courier's
+ PID files are stored when
+ Courier is active.
+
+ --with-paranoid-smtpext: Be paranoid when
+ negotiating Courier-specific ESMTP extensions with remote servers.
+ The Courier mail server defines and implements
+ certain experimental ESMTP extensions: XVERP and XEXDATA. Problems may
+ result in the event that someone else uses the same name to implement
+ some other extension. If this option is specified,
+ Courier's ESMTP server will also advertise a
+ dummy ESMTP capability called XCOURIEREXTENSIONS, and will not recognize
+ any Courier-specific extensions unless the remote mail server also
+ advertises this dummy ESMTP capability.
+
+ --disable-autorenamesent: Do not rename the
+ Sent folder every month. This option can also be controlled by the
+ SQWEBMAIL_AUTORENAMESENT environment variable.
+
+ --enable-workarounds-for-imap-client-bugs:
+ There are several confirmed bugs in some IMAP clients that do not properly
+ implement the IMAP4rev1 protocol. This option enables some workarounds for
+ those buggy IMAP clients. NOTE: make check will fail if
+ this option is used. You should first configure without this option, and
+ if all post-configuration tests succeed, rerun configure
+ with this option and recompile.
+
+ --with-db=gdbm:
+ Courier requires either the
+ GDBM or the DB
+ database library. GDBM is used if both are
+ present. This option forces the selection of
+ GDBM as Courier
+ is currently broken when used with DB.
+
+
+
+ :
+ Courier's webmail server can use spell
+ checking, if configure finds
+ ispell or if you explicitly set the location
+ of Aspell.
+
+ : Use this switch if you receive an error
+ saying that the mime.types file could not be
+ found.
+
+
+
+
+ Configuring Courier
+
+
+ Configuration Files
+
+ /etc/courier/*
+
+
+ /etc/courier/*
+
+
+
+
+
+ Configuration Information
+
+ While still as root,
+ you will need to create the following files with the contents
+ specified.
+
+ /etc/courier/defaultdomain
+
+cat > /etc/courier/defaultdomain << "EOF"
+<yourdomain>
+EOF
+
+ /etc/courier/me
+
+cat > /etc/courier/me << "EOF"
+<servername.yourdomain>
+EOF
+
+ /etc/courier/locals
+
+cat > /etc/courier/locals << "EOF"
+localhost
+<yourdomain>
+EOF
+
+ /etc/courier/esmtpacceptmailfor.dir/system
+
+cat > /etc/courier/esmtpacceptmailfor.dir/system << "EOF"
+localhost
+<yourdomain>
+EOF
+
+ You will also need to edit the
+ /etc/courier/aliases/system file and change the
+ following entry.
+
+postmaster: <your administrator email>
+
+ If you want to deny access from some hosts from sending mail,
+ you will need to edit the
+ /etc/courier/smtpaccess/default file.
+
+ If you wish to host mail for non-local domains including virtual
+ domains, you must add them to
+ /etc/courier/hosteddomains. This file should exist
+ whether you need a hosted domain list or not:
+
+touch /etc/courier/hosteddomains
+
+ After the above steps are completed you will need to run the
+ following commands:
+
+makesmtpaccess &&
+makehosteddomains &&
+makealiases
+
+ For each user, you will need to create a
+ Maildir directory:
+
+cd /home/<username> &&
+maildirmake Maildir &&
+chown <username>.<username> Maildir -R
+
+ If you wish to use SSL with Courier,
+ you should obtain certificates and store them in
+ /usr/share/courier. You can
+ optionally create self-signed, test certificates with the following
+ commands:
+
+mkesmtpdcert &&
+mkimapdcert &&
+mkpop3dcert
+
+ All of Courier's configuration files reside
+ in the directory /etc/courier/. For
+ each service SMTP, POP3 and IMAP, you will have a standard config file, and
+ an SSL config file. For each service that you wish to utilize, you will
+ need to edit the configuration file, and change the
+ <DAEMON>START variable from 'NO' to 'YES'. For
+ example, to use SMTP with SSL, you'll need to edit
+ /etc/courier/esmtpd-ssl and change the value of
+ 'ESMTPDSSLSTART' to 'YES'. Make the same change for each service
+ configuration that you wish to use with
+ Courier.
+
+ If you wish to use LDAP, an LDAP configuration file should be
+ created:
+
+echo "LDAPALIASDSTART=YES" > /etc/courier/ldapaliasd
+
+ Similarly, if you wish to use webmail, you should create the webmail
+ configuration file:
+
+echo "WEBMAILDSTART=YES" > /etc/courier/webmaild
+
+ You will also need to copy the webmail file
+ from /usr/lib/courier/courier/webmail to the
+ cgi-bin directory of your
+ Apache server.
+
+cp -v -a /usr/lib/courier/courier/webmail/webmail /srv/www/cgi-bin
+
+ You will then need to copy the images to a directory under your
+ htdocs directory of your
+ Apache server. The directory needs to be named
+ webmail or you need to specify it
+ during the configure phase with
+ .
+
+cp -v -a /usr/share/courier/sqwebmail/images /srv/www/htdocs/webmail
+
+ If you wish to utilize the webadmin utility, you will need to copy
+ the webadmin file from
+ /usr/lib/courier/courier/webmail
+ to your cgi-bin directory of your
+ Apache server.
+
+cp -v -a /usr/lib/courier/courier/webmail/webadmin /srv/www/cgi-bin
+
+ You also need to put the password into the file
+ /etc/courier/webadmin/password:
+
+cat > /etc/courier/webadmin/password << "EOF"
+<password>
+EOF
+
+ If you are not using SSL on your Apache
+ server, you will also need to add
+ /etc/courier/webadmin/unsecureok, so you will be
+ able to use your web based administration tool.
+
+touch /etc/courier/webadmin/unsecureok
+
+ If you use Linux-PAM on your system,
+ you will need to create the PAM configuration files:
+
+cat > /etc/pam.d/esmtp << "EOF"
+# Begin /etc/pam.d/esmtp
+
+auth required pam_unix.so try_first_pass
+account required pam_unix.so
+session required pam_unix.so
+
+# End /etc/pam.d/esmtp
+EOF
+cat > /etc/pam.d/pop3 << "EOF"
+# Begin /etc/pam.d/pop3
+
+auth required pam_unix.so try_first_pass
+account required pam_unix.so
+session required pam_unix.so
+
+# End /etc/pam.d/pop3
+EOF
+cat > /etc/pam.d/imap << "EOF"
+# Begin /etc/pam.d/imap
+
+auth required pam_unix.so try_first_pass
+account required pam_unix.so
+session required pam_unix.so
+
+# End /etc/pam.d/imap
+EOF
+cat > /etc/pam.d/webmail << "EOF"
+# Begin /etc/pam.d/webmail
+
+auth required pam_unix.so try_first_pass
+account required pam_unix.so
+session required pam_unix.so
+
+# End /etc/pam.d/webmail
+EOF
+
+
+
+
+ Boot Script
+
+ Finally, if you wish to start the
+ Courier server at boot, install the
+ /etc/rc.d/init.d/courier bootscript included
+ in the package.
+
+
+ courier
+
+
+make install-courier
+
+
+
+
+
+
+ Configuring for Virtual Users
+
+ These instructions will configure Courier
+ to lookup virtual users in a MySQL database.
+ Begin by making the following changes to
+ /etc/courier/authmysqlrc:
+
+MYSQL_SERVER localhost
+MYSQL_USERNAME courier
+MYSQL_PASSWORD <your choice>
+MYSQL_SOCKET /var/run/mysql/mysql.sock
+MYSQL_PORT 3306
+MYSQL_DATABASE courier_mail
+MYSQL_USER_TABLE users
+MYSQL_CLEAR_PWFIELD clear
+DEFAULT DOMAIN <your domain>
+MYSQL_QUOTA_FIELD quota
+
+ Connect to MySQL:
+
+mysql -p
+
+ Create the courier_mail database and setup
+ the users table:
+
+CREATE DATABASE courier_mail;
+USE courier_mail
+CREATE TABLE users (
+id char(128) DEFAULT '' NOT NULL,
+crypt char(128) DEFAULT '' NOT NULL,
+clear char(128) DEFAULT '' NOT NULL,
+name char(128) DEFAULT '' NOT NULL,
+uid int(10) unsigned DEFAULT '65534' NOT NULL,
+gid int(10) unsigned DEFAULT '65534' NOT NULL,
+home char(255) DEFAULT '' NOT NULL,
+quota char(255) DEFAULT '' NOT NULL,
+KEY id (id(128))
+);
+
+ Grant all privileges to the courier user created earlier:
+
+GRANT ALL PRIVILEGES ON *.* TO courier@localhost \
+ IDENTIFIED BY '<password>' WITH GRANT OPTION;
+QUIT
+
+ Create a virtual mailman user and group:
+
+groupadd -g 35 vmailman &&
+useradd -c 'Virtual Mailman' -g vmailman -m -k /dev/null -u 35 vmailman
+
+ Create a mail directory for a new virtual user:
+
+cd /home/vmailman &&
+mkdir -v <virtual_user> &&
+cd <virtual_user> &&
+maildirmake Maildir &&
+chown -v vmailman.vmailman Maildir -R
+
+ Now, connect to the MySQL database as
+ the courier user:
+
+mysql -u courier -p
+
+ To add the virtual user you need to enter at least one version of the
+ password; either clear text or encrypted.
+
+ Add the first virtual user with the following commands:
+
+USE courier_mail
+INSERT INTO users VALUES (
+'<virtual_users>@<domain.com>,
+'<encrypted password or blank>',
+'<clear text password or blank>',
+'<User's Name>',
+9000,
+9000,
+'<location of Maildir>',
+'<Quota in Bytes'>
+);
+QUIT
+
+ For example:
+
+INSERT INTO users VALUES (
+'blfsuser@&lfs-domainname;',
+'',
+'password',
+'BLFS User',
+9000,
+9000,
+'/home/vmailman/blfsuser',
+''
+);
+
+
+
+
+
+
+
+
+ Contents
+
+
+ Installed Programs
+ Installed Libraries
+ Installed Directories
+
+
+ addcr, authenumerate, cancelmsg, courier, courier-config,
+ courieresmtpd, courierfilter, courierlogger, couriermlm, couriertcpd,
+ couriertls, deliverquota, dotforward, esmtpd, esmtpd-msa, esmtpd-ssl,
+ filterctl, imapd, imapd-ssl, lockmail, mailbot, maildiracl, maildirkw,
+ maildirmake, maildrop, mailq, makeacceptmailfor, makealiases, makedat,
+ makehosteddomains, makemime, makepercentrelay, makesmtpaccess,
+ makesmtpaccess-msa, makeuserdb, makeuucpneighbors, mimegpg,
+ mkesmtpdcert, mkimapdcert, mkpop3dcert, pop3d, pop3d-ssl, preline,
+ pw2userdb, reformail, reformime, rmail, sendmail, sharedindexinstall,
+ sharedindexsplit, showconfig, showmodules, testmxlookup, userdb,
+ userdbpw, vchkpw2userdb, webgpg, and webmaild
+ None
+ /etc/courier, /usr/lib/courier, /usr/share/courier, /var/lib/courier,
+ /var/lock/subsys, /var/run/courier, and /var/spool/courier
+
+
+
+
+ Short Descriptions
+
+
+
+
+ cancelmsg
+
+ removes a message from the mail queue.
+
+ cancelmsg
+
+
+
+
+
+ courier
+
+ is an administrative command used to control the
+ Courier scheduling engine.
+
+ courier
+
+
+
+
+
+ courierfax
+
+ sends email messages by fax.
+
+ courierfax
+
+
+
+
+
+ courierfilter
+
+ starts and stops all mail filters installed by
+ filterctl.
+
+ courierfilter
+
+
+
+
+
+ courierldapaliasd
+
+ supports mail address aliasing using an LDAP directory.
+
+ courierldapaliasd
+
+
+
+
+
+ courierlogger
+
+ captures error messages from other
+ Courier applications and forwards them
+ to the system logger.
+
+ courierlogger
+
+
+
+
+
+ couriermlm
+
+ sets up, maintains, and manages mailing lists.
+
+ couriermlm
+
+
+
+
+
+ courierperlfilter
+
+ is a sample filter written in
+ Perl.
+
+ courierperlfilter
+
+
+
+
+
+ courierpop3d
+
+ is a Courier
+ POP3 server.
+
+ courierpop3d
+
+
+
+
+
+ courierpop3login
+
+ reads the POP3 userid and password and
+ passes them to the authentication modules.
+
+ courierpop3login
+
+
+
+
+
+ couriertcpd
+
+ accepts incoming network connections, and runs other
+ Courier programs after establishing each
+ network connection.
+
+ couriertcpd
+
+
+
+
+
+ couriertls
+
+ is used by applications to encrypt a network connection
+ using SSL/TLS.
+
+ couriertls
+
+
+
+
+
+ dotforward
+
+ is a compatibility module that reads forwarding
+ instructions in $HOME/.forward.
+
+ dotforward
+
+
+
+
+
+ dupfilter
+
+ is a threaded filter that tries to block junk E-mail by
+ attempting to detect multiple copies of the same message, which
+ are rejected.
+
+ dupfilter
+
+
+
+
+
+ esmtpd
+
+ is a control script for courieresmtpd.
+
+ esmtpd
+
+
+
+
+
+ esmtpd-msa
+
+ is a control script for courieresmtpd, but adds message
+ submission port 587 for the MSA protocol.
+
+ esmtpd-msa
+
+
+
+
+
+ filterctl
+
+ installs or uninstalls global mail filters.
+
+ filterctl
+
+
+
+
+
+ imapd
+
+ is the Courier-IMAP server.
+
+ imapd
+
+
+
+
+
+ lockmail
+
+ is a helper utility for locking mailbox files.
+
+ lockmail
+
+
+
+
+
+ mailbot
+
+ is a MIME-aware autoresponder utility.
+
+ mailbot
+
+
+
+
+
+ maildiracl
+
+ manages access control lists.
+
+ maildiracl
+
+
+
+
+
+ maildirkw
+
+ modifies Courier-IMAP compatible
+ maildir message keywords.
+
+ maildirkw
+
+
+
+
+
+ maildirmake
+
+ creates maildirs, and maildir folders.
+
+ maildirmake
+
+
+
+
+
+ maildrop
+
+ is a replacement local mail delivery agent that includes a
+ mail filtering language.
+
+ maildrop
+
+
+
+
+
+ mailq
+
+ displays a list of all messages that have not been
+ delivered yet.
+
+ mailq
+
+
+
+
+
+ makeacceptmailfor
+
+ builds a list of domains to accept mail for, from the
+ /etc/courier/esmtpacceptmailfor.dir
+ directory.
+
+ makeacceptmailfor
+
+
+
+
+
+ makealiases
+
+ builds an alias database from one or more plain text
+ source files.
+
+ makealiases
+
+
+
+
+
+ makedat
+
+ is a utility to create GDBM or
+ DB files from plain text files.
+
+ makedat
+
+
+
+
+
+ makehosteddomains
+
+ rebuilds the contents of the hosteddomains database from the
+ contents of /etc/courier/hosteddomains.
+
+ makehosteddomains
+
+
+
+
+
+ makemime
+
+ creates MIME-formatted messages from one
+ or more files.
+
+ makemime
+
+
+
+
+
+ makepercentrelay
+
+ builds a list of %-relayed domains from the
+ percentrelay.dir directory.
+
+ makepercentrelay
+
+
+
+
+
+ makesmtpaccess
+
+ builds ESMTP server access files from the
+ /etc/courier/smtpaccess
+ directory.
+
+ makesmtpaccess
+
+
+
+
+
+ makesmtpaccess-msa
+
+ builds ESMTP server access files from the
+ /etc/courier/smtpaccess
+ directory. This esmtp list is for the MSA protocol.
+
+ makesmtpaccess-msa
+
+
+
+
+
+ makeuserdb
+
+ builds a user/password db from the contents of /etc/courier/userdb.
+
+ makeuserdb
+
+
+
+
+
+ mimegpg
+
+ signs, encrypts, or decrypts MIME-formatted
+ email messages using GnuPG.
+
+ mimegpg
+
+
+
+
+
+ mkesmtpdcert
+
+ creates a secure SMTP test certificate.
+
+ mkesmtpdcert
+
+
+
+
+
+ mkimapdcert
+
+ creates a secure IMAP test certificate.
+
+ mkimapdcert
+
+
+
+
+
+ mkpop3dcert
+
+ creates a secure POP3 test certificate.
+
+ mkpop3dcert
+
+
+
+
+
+ pop3d
+
+ is a wrapper script for couriertcpd to
+ start and stop the POP3 service.
+
+ pop3d
+
+
+
+
+
+ pop3d-ssl
+
+ is a wrapper script for couriertcpd to
+ start and stop the POP3 over SSL service.
+
+ pop3d-ssl
+
+
+
+
+
+ preline
+
+ prepends legacy mbox headers to mail
+ messages.
+
+ preline
+
+
+
+
+
+ reformail
+
+ reads a message on standard input, reformats it in some
+ way, and writes the message to standard output.
+
+ reformail
+
+
+
+
+
+ reformime
+
+ is a utility for reformatting MIME messages.
+
+ reformime
+
+
+
+
+
+ sendmail
+
+ reads an email message and delivers the message to its
+ recipients.
+
+ sendmail
+
+
+
+
+
+ submit
+
+ submits messages to Courier for
+ processing.
+
+ submit
+
+
+
+
+
+ testmxlookup
+
+ lists the names and IP addresses of mail
+ relays that receive mail for the domain.
+
+ testmxlookup
+
+
+
+
+
+ userdb
+
+ is a script to individually manipulate entries in
+ /etc/courier/userdb.
+
+ userdb
+
+
+
+
+
+ userdbpw
+
+ reads a single line of text on standard input, encrypts
+ it, and prints the encrypted result to standard output.
+
+ userdbpw
+
+
+
+
+
+
+
+
+
Index: archive/leafnode.xml
===================================================================
--- archive/leafnode.xml (revision 4e48de46ec87726c2f935c0670b5ee21fd02e445)
+++ archive/leafnode.xml (revision 4e48de46ec87726c2f935c0670b5ee21fd02e445)
@@ -0,0 +1,332 @@
+
+
+ %general-entities;
+
+
+
+
+
+
+
+]>
+
+
+
+
+
+ $LastChangedBy$
+ $Date$
+
+
+ Leafnode-&leafnode-version;
+
+
+ Leafnode
+
+
+
+ Introduction to Leafnode
+
+ Leafnode is an NNTP server designed
+ for small sites to provide a local USENET spool.
+
+ Package Information
+
+
+ Download (HTTP):
+
+
+ Download (FTP):
+
+
+ Download MD5 sum: &leafnode-md5sum;
+
+
+ Download size: &leafnode-size;
+
+
+ Estimated disk space required: &leafnode-buildsize;
+
+
+ Estimated build time: &leafnode-time;
+
+
+
+ Leafnode Dependencies
+
+ Required
+ and
+
+
+ Recommended
+
+
+
+
+
+ User Notes:
+
+
+
+
+
+ Installation of Leafnode
+
+ As the root user, create
+ the group and user news,
+ if not present:
+
+groupadd -g 36 news &&
+useradd -c "Leafnode News Server" -d /var/spool/news -g news \
+ -u 36 news
+
+ Install Leafnode by running the following
+ commands:
+
+./configure --prefix=/usr \
+ --localstatedir=/var --sysconfdir=/etc/leafnode \
+ --with-lockfile=/var/lock/leafnode/fetchnews.lck &&
+make
+ To test the results, issue: make check.
+ Now, as the root user:
+
+make install
+
+
+
+
+ Command Explanations
+
+ --localstatedir=/var: Change the default
+ spool directory of /usr/var.
+
+ --sysconfdir=/etc/leafnode:
+ Leafnode reads its configuration data from a
+ file called config which will be created in
+ /etc/leafnode to
+ avoid any potential conflict with other packages.
+
+ make update: Run this command if you are upgrading
+ from a very old version of Leafnode.
+
+
+
+
+ Configuring Leafnode
+
+
+ Config Files
+
+ /etc/leafnode/config,
+ /etc/nntpserver,
+ /etc/sysconfig/createfiles
+ /etc/inetd.conf or
+
+
+
+ /etc/leafnode/config
+
+
+
+ /etc/nntpserver
+
+
+
+ /etc/inetd.conf
+
+
+
+ /etc/sysconfig/createfiles
+
+
+
+
+
+ Configuration Information
+
+ The /etc/leafnode/config file must be
+ edited to reflect the name of the upstream NNTP provider. Copy the
+ example configuration file to /etc/leafnode/config
+ and save the original for reference:
+
+cp /etc/leafnode/config.example /etc/leafnode/config
+
+ Change the
+
+server =
+
+ entry to reflect your news provider.
+
+ The /etc/nntpserver file must contain
+ 127.0.0.1 to prevent news clients from reading news from the upstream
+ feed. Create this file using the following command:
+
+cat > /etc/nntpserver << "EOF"
+127.0.0.1
+
+EOF
+
+ The /etc/rc.d/init.d/cleanfs script, part
+ of the LFS bootscript package, will remove the
+ /var/lock/leafnode directory
+ during the system boot sequence. Install the following line in the
+ /etc/sysconfig/createfiles file to re-create the
+ directory:
+
+/var/lock/leafnode dir 2775 news news
+
+ Leafnode may be configured to
+ use inetd by adding an entry to the
+ /etc/inetd.conf file with the following
+ command:
+
+echo "nntp stream tcp nowait news /usr/sbin/tcpd /usr/sbin/leafnode" \
+>> /etc/inetd.conf
+
+ Issue a killall -HUP inetd to reread the
+ changed inetd.conf file.
+
+ Add entries to the root
+ or news user's crontab to run
+ the fetchnews and texpire commands
+ at the desired time intervals.
+
+
+
+
+
+
+ Contents
+
+
+ Installed Programs
+ Installed Libraries
+ Installed Directories
+
+
+ applyfilter, checkgroups, fetchnews, leafnode,
+ leafnode-version, newsq, and texpire
+ None
+ /etc/leafnode, /var/lock/leafnode, and /var/spool/news
+
+
+
+
+ Short Descriptions
+
+
+
+
+ applyfilter
+
+ filters newsgroup articles according to regular
+ expressions.
+
+ applyfilter
+
+
+
+
+
+ checkgroups
+
+ inserts newsgroup titles into the newsgroup database.
+
+ checkgroups
+
+
+
+
+
+ fetchnews
+
+ sends posted articles to and retrieves new articles from an
+ upstream news server.
+
+ fetchnews
+
+
+
+
+
+ leafnode
+
+ is an NNTP server daemon.
+
+ leafnode
+
+
+
+
+
+ leafnode-version
+
+ prints the Leafnode version.
+
+ leafnode-version
+
+
+
+
+
+ newsq
+
+ shows articles waiting to be sent upstream.
+
+ newsq
+
+
+
+
+
+ texpire
+
+ expires old articles and unread groups.
+
+ texpire
+
+
+
+
+
+
+
+
+
Index: archive/xinetd.xml
===================================================================
--- archive/xinetd.xml (revision 4e48de46ec87726c2f935c0670b5ee21fd02e445)
+++ archive/xinetd.xml (revision 4e48de46ec87726c2f935c0670b5ee21fd02e445)
@@ -0,0 +1,755 @@
+
+
+ %general-entities;
+
+
+
+
+
+
+
+]>
+
+
+
+
+
+ $LastChangedBy$
+ $Date$
+
+
+ xinetd-&xinetd-version;
+
+
+ Xinetd
+
+
+
+ Introduction to xinetd
+
+ xinetd is the eXtended InterNET services
+ daemon, a secure replacement for inetd.
+
+ Package Information
+
+
+ Download (HTTP):
+
+
+ Download (FTP):
+
+
+ Download MD5 sum: &xinetd-md5sum;
+
+
+ Download size: &xinetd-size;
+
+
+ Estimated disk space required: &xinetd-buildsize;
+
+
+ Estimated build time: &xinetd-time;
+
+
+
+ xinetd Dependencies
+
+ Optional
+ and
+
+
+ User Notes:
+
+
+
+
+
+ Installation of xinetd
+
+ Install xinetd by running the following
+ commands:
+
+./configure --prefix=/usr --with-loadavg &&
+make
+
+ This package does not come with a test suite.
+
+ Now, as the root user:
+
+make install
+
+
+
+
+ Configuring xinetd
+
+
+ Config Files
+
+ /etc/xinetd.conf and
+ /etc/xinetd.d/*
+
+
+ /etc/xinetd.conf
+
+
+
+ /etc/xinetd.d/*
+
+
+
+
+
+ Configuration Information
+
+ Ensure the path to all daemons is
+ /usr/sbin, rather than the default
+ path of /usr/etc, and install the
+ xinetd configuration files by running the
+ following commands as the root
+ user:
+
+cat > /etc/xinetd.conf << "EOF"
+# Begin /etc/xinetd
+# Configuration file for xinetd
+#
+
+defaults
+{
+ instances = 60
+ log_type = SYSLOG daemon
+ log_on_success = HOST PID USERID
+ log_on_failure = HOST USERID
+ cps = 25 30
+}
+
+# All service files are stored in the /etc/xinetd.d directory
+#
+includedir /etc/xinetd.d
+# End /etc/xinetd
+EOF
+
+ All of the following files have the statement, "disable = yes".
+ To activate any of the services, this statement will need to be changed
+ to "disable = no".
+
+
+ The following files are listed to demonstrate classic
+ xinetd applications. In many cases, these
+ applications are not needed. In some cases, the applications are
+ considered security risks. For example, telnet,
+ rlogin, rexec, and
+ rsh transmit unencrypted usernames and passwords
+ over the network and can be easily replaced with a more secure
+ alternative: ssh.
+
+
+install -v -d -m755 /etc/xinetd.d &&
+cat > /etc/xinetd.d/login << "EOF" &&
+# Begin /etc/xinetd.d/login
+
+service login
+{
+ disable = yes
+ socket_type = stream
+ protocol = tcp
+ wait = no
+ user = root
+ server = /usr/sbin/in.rlogind
+ log_type = SYSLOG local4 info
+}
+
+# End /etc/xinetd.d/login
+EOF
+cat > /etc/xinetd.d/shell << "EOF" &&
+# Begin /etc/xinetd.d/shell
+
+service shell
+{
+ disable = yes
+ socket_type = stream
+ wait = no
+ user = root
+ instances = UNLIMITED
+ flags = IDONLY
+ log_on_success += USERID
+ server = /usr/sbin/in.rshd
+}
+
+# End /etc/xinetd.d/shell
+EOF
+cat > /etc/xinetd.d/exec << "EOF" &&
+# Begin /etc/xinetd.d/exec
+
+service exec
+{
+ disable = yes
+ socket_type = stream
+ wait = no
+ user = root
+ server = /usr/sbin/in.rexecd
+}
+
+# End /etc/xinetd.d/exec
+EOF
+cat > /etc/xinetd.d/comsat << "EOF" &&
+# Begin /etc/xinetd.d/comsat
+
+service comsat
+{
+ disable = yes
+ socket_type = dgram
+ wait = yes
+ user = nobody
+ group = tty
+ server = /usr/sbin/in.comsat
+}
+
+# End /etc/xinetd.d/comsat
+EOF
+cat > /etc/xinetd.d/talk << "EOF" &&
+# Begin /etc/xinetd.d/talk
+
+service talk
+{
+ disable = yes
+ socket_type = dgram
+ wait = yes
+ user = root
+ server = /usr/sbin/in.talkd
+}
+
+# End /etc/xinetd.d/talk
+EOF
+cat > /etc/xinetd.d/ntalk << "EOF" &&
+# Begin /etc/xinetd.d/ntalk
+
+service ntalk
+{
+ disable = yes
+ socket_type = dgram
+ wait = yes
+ user = root
+ server = /usr/sbin/in.ntalkd
+}
+
+# End /etc/xinetd.d/ntalk
+EOF
+cat > /etc/xinetd.d/telnet << "EOF" &&
+# Begin /etc/xinetd.d/telnet
+
+service telnet
+{
+ disable = yes
+ socket_type = stream
+ wait = no
+ user = root
+ server = /usr/sbin/in.telnetd
+ bind = 127.0.0.1
+ log_on_failure += USERID
+}
+
+service telnet
+{
+ disable = yes
+ socket_type = stream
+ wait = no
+ user = root
+# server = /usr/sbin/in.telnetd
+ bind = 192.231.139.175
+ redirect = 128.138.202.20 23
+ log_on_failure += USERID
+}
+
+# End /etc/xinetd.d/telnet
+EOF
+cat > /etc/xinetd.d/ftp << "EOF" &&
+# Begin /etc/xinetd.d/ftp
+
+service ftp
+{
+ disable = yes
+ socket_type = stream
+ wait = no
+ user = root
+ server = /usr/sbin/in.ftpd
+ server_args = -l
+ instances = 4
+ log_on_success += DURATION USERID
+ log_on_failure += USERID
+ access_times = 2:00-8:59 12:00-23:59
+ nice = 10
+}
+
+# End /etc/xinetd.d/ftp
+EOF
+cat > /etc/xinetd.d/tftp << "EOF" &&
+# Begin /etc/xinetd.d/tftp
+
+service tftp
+{
+ disable = yes
+ socket_type = dgram
+ wait = yes
+ user = root
+ server = /usr/sbin/in.tftpd
+ server_args = -s /tftpboot
+}
+
+# End /etc/xinetd.d/tftp
+EOF
+cat > /etc/xinetd.d/finger << "EOF" &&
+# Begin /etc/xinetd.d/finger
+
+service finger
+{
+ disable = yes
+ socket_type = stream
+ wait = no
+ user = nobody
+ server = /usr/sbin/in.fingerd
+}
+
+# End /etc/xinetd.d/finger
+EOF
+cat > /etc/xinetd.d/systat << "EOF" &&
+# Begin /etc/xinetd.d/systat
+
+service systat
+{
+ disable = yes
+ socket_type = stream
+ wait = no
+ user = nobody
+ server = /usr/bin/ps
+ server_args = -auwwx
+ only_from = 128.138.209.0
+ log_on_success = HOST
+}
+
+# End /etc/xinetd.d/systat
+EOF
+cat > /etc/xinetd.d/netstat << "EOF" &&
+# Begin /etc/xinetd.d/netstat
+
+service netstat
+{
+ disable = yes
+ socket_type = stream
+ wait = no
+ user = nobody
+ server = /usr/ucb/netstat
+ server_args = -f inet
+ only_from = 128.138.209.0
+ log_on_success = HOST
+}
+
+# End /etc/xinetd.d/netstat
+EOF
+cat > /etc/xinetd.d/echo << "EOF" &&
+# Begin /etc/xinetd.d/echo
+
+service echo
+{
+ disable = yes
+ type = INTERNAL
+ id = echo-stream
+ socket_type = stream
+ protocol = tcp
+ user = root
+ wait = no
+}
+
+service echo
+{
+ disable = yes
+ type = INTERNAL
+ id = echo-dgram
+ socket_type = dgram
+ protocol = udp
+ user = root
+ wait = yes
+}
+
+# End /etc/xinetd.d/echo
+EOF
+cat > /etc/xinetd.d/chargen << "EOF" &&
+# Begin /etc/xinetd.d/chargen
+
+service chargen
+{
+ disable = yes
+ type = INTERNAL
+ id = chargen-stream
+ socket_type = stream
+ protocol = tcp
+ user = root
+ wait = no
+}
+
+service chargen
+{
+ disable = yes
+ type = INTERNAL
+ id = chargen-dgram
+ socket_type = dgram
+ protocol = udp
+ user = root
+ wait = yes
+}
+
+# End /etc/xinetd.d/chargen
+EOF
+cat > /etc/xinetd.d/daytime << "EOF" &&
+# Begin /etc/xinetd.d/daytime
+
+service daytime
+{
+ disable = yes
+ type = INTERNAL
+ id = daytime-stream
+ socket_type = stream
+ protocol = tcp
+ user = root
+ wait = no
+}
+
+service daytime
+{
+ disable = yes
+ type = INTERNAL
+ id = daytime-dgram
+ socket_type = dgram
+ protocol = udp
+ user = root
+ wait = yes
+}
+
+# End /etc/xinetd.d/daytime
+EOF
+cat > /etc/xinetd.d/time << "EOF" &&
+# Begin /etc/xinetd.d/time
+
+service time
+{
+ disable = yes
+ type = INTERNAL
+ id = time-stream
+ socket_type = stream
+ protocol = tcp
+ user = root
+ wait = no
+}
+
+
+service time
+{
+ disable = yes
+ type = INTERNAL
+ id = time-dgram
+ socket_type = dgram
+ protocol = udp
+ user = root
+ wait = yes
+}
+
+# End /etc/xinetd.d/time
+EOF
+cat > /etc/xinetd.d/rstatd << "EOF" &&
+# Begin /etc/xinetd.d/rstatd
+
+service rstatd
+{
+ disable = yes
+ type = RPC
+ flags = INTERCEPT
+ rpc_version = 2-4
+ socket_type = dgram
+ protocol = udp
+ server = /usr/sbin/rpc.rstatd
+ wait = yes
+ user = root
+}
+
+# End /etc/xinetd.d/rstatd
+EOF
+cat > /etc/xinetd.d/rquotad << "EOF" &&
+# Begin /etc/xinetd.d/rquotad
+
+service rquotad
+{
+ disable = yes
+ type = RPC
+ rpc_version = 1
+ socket_type = dgram
+ protocol = udp
+ wait = yes
+ user = root
+ server = /usr/sbin/rpc.rstatd
+}
+
+# End /etc/xinetd.d/rquotad
+EOF
+cat > /etc/xinetd.d/rusersd << "EOF" &&
+# Begin /etc/xinetd.d/rusersd
+
+service rusersd
+{
+ disable = yes
+ type = RPC
+ rpc_version = 1-2
+ socket_type = dgram
+ protocol = udp
+ wait = yes
+ user = root
+ server = /usr/sbin/rpc.rusersd
+}
+
+# End /etc/xinetd.d/rusersd
+EOF
+cat > /etc/xinetd.d/sprayd << "EOF" &&
+# Begin /etc/xinetd.d/sprayd
+
+service sprayd
+{
+ disable = yes
+ type = RPC
+ rpc_version = 1
+ socket_type = dgram
+ protocol = udp
+ wait = yes
+ user = root
+ server = /usr/sbin/rpc.sprayd
+}
+
+# End /etc/xinetd.d/sprayd
+EOF
+cat > /etc/xinetd.d/walld << "EOF" &&
+# Begin /etc/xinetd.d/walld
+
+service walld
+{
+ disable = yes
+ type = RPC
+ rpc_version = 1
+ socket_type = dgram
+ protocol = udp
+ wait = yes
+ user = nobody
+ group = tty
+ server = /usr/sbin/rpc.rwalld
+}
+
+# End /etc/xinetd.d/walld
+EOF
+cat > /etc/xinetd.d/irc << "EOF"
+# Begin /etc/xinetd.d/irc
+
+service irc
+{
+ disable = yes
+ socket_type = stream
+ wait = no
+ user = root
+ flags = SENSOR
+ type = INTERNAL
+ bind = 192.168.1.30
+ deny_time = 60
+}
+
+# End /etc/xinetd.d/irc
+EOF
+
+
+ /etc/xinetd.d/login
+
+
+
+ /etc/xinetd.d/shell
+
+
+
+ /etc/xinetd.d/exec
+
+
+
+ /etc/xinetd.d/comsat
+
+
+
+ /etc/xinetd.d/talk
+
+
+
+ /etc/xinetd.d/ntalk
+
+
+
+ /etc/xinetd.d/telnet
+
+
+
+ /etc/xinetd.d/ftp
+
+
+
+ /etc/xinetd.d/tftp
+
+
+
+ /etc/xinetd.d/systat
+
+
+
+ /etc/xinetd.d/finger
+
+
+
+ /etc/xinetd.d/netstat
+
+
+
+ /etc/xinetd.d/echo
+
+
+
+ /etc/xinetd.d/chargen
+
+
+
+ /etc/xinetd.d/daytime
+
+
+
+ /etc/xinetd.d/time
+
+
+
+ /etc/xinetd.d/rstatd
+
+
+
+ /etc/xinetd.d/rquotad
+
+
+
+ /etc/xinetd.d/ruserd
+
+
+
+ /etc/xinetd.d/sprayd
+
+
+
+ /etc/xinetd.d/walld
+
+
+
+ /etc/xinetd.d/irc
+
+
+ The format of the /etc/xinetd.conf is
+ documented in the xinetd.conf.5 man page. Further
+ information can be found at .
+
+
+
+
+ Boot Script
+
+ As the root user, install
+ the /etc/rc.d/init.d/xinetd init script included in
+ the package.
+
+
+ xinetd
+
+
+make install-xinetd
+
+ As the root user,
+ use the new boot script to start xinetd:
+
+/etc/rc.d/init.d/xinetd start
+
+ Checking the /var/log/daemon.log file
+ should prove quite entertaining. This file may contain entries
+ similar to the following:
+
+Aug 22 21:40:21 dps10 xinetd[2696]: Server /usr/sbin/in.rlogind is not
+executable [line=29]
+Aug 22 21:40:21 dps10 xinetd[2696]: Error parsing attribute server -
+DISABLING SERVICE [line=29]
+Aug 22 21:40:21 dps10 xinetd[2696]: Server /usr/sbin/in.rshd is not
+executable [line=42]
+
+ These errors are because most of the servers
+ xinetd is trying to control are not
+ installed yet.
+
+
+
+
+
+
+ Contents
+
+
+ Installed Programs
+ Installed Libraries
+ Installed Directories
+
+
+ itox, xconv.pl, and xinetd
+ None
+ /etc/xinetd.d/
+
+
+
+
+ Short Descriptions
+
+
+
+
+ itox
+
+ is a utility used for converting
+ inetd.conf files to
+ xinetd.conf format.
+
+ itox
+
+
+
+
+
+ xconv.pl
+
+ is a Perl script used for
+ converting inetd.conf files to
+ xinetd.conf format, similar to
+ itox.
+
+ xconv.pl
+
+
+
+
+
+ xinetd
+
+ is the Internet services daemon.
+
+ xinetd
+
+
+
+
+
+
+
+
+
Index: rver/mail/courier.xml
===================================================================
--- server/mail/courier.xml (revision 7df2e1ae72002db4302f44d89cfde9f5033637c3)
+++ (revision )
@@ -1,1090 +1,0 @@
-
-
- %general-entities;
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-]>
-
-
-
-
-
- $LastChangedBy$
- $Date$
-
-
- Courier-&courier-version;
-
-
- Courier MTA
-
-
-
- Introduction to Courier
-
- The Courier package contains a Mail
- Transport Agent (MTA). This is useful for sending email to other users
- of your host machine. It can also be configured to be a central mail
- server for your domain or a mail relay agent. The
- Courier packages also includes a web-based
- email interface, IMAP, IMAP-SSL, POP3, and POP3-SSL.
-
- Package Information
-
-
- Download (HTTP):
-
-
- Download (FTP):
-
-
- Download MD5 sum: &courier-md5sum;
-
-
- Download size: &courier-size;
-
-
- Estimated disk space required: &courier-buildsize;
-
-
- Estimated build time: &courier-time;
-
-
-
- Courier Dependencies
-
-
-
- Optional
- or ,
- ,
- ,
- ,
- ,
- ,
-
- ,
- ,
- ,
- ,
- Netpbm and
- Mgetty+Sendfax
-
- User Notes:
-
-
-
-
-
- Installation of Courier
-
-
- Courier's tarball must be extracted
- as an unprivileged user or the configure script will
- fail.
-
-
- Before you compile the program, you need to create the
- courier user and group
- that is expected to be in place during installation.
- As the root user, add
- the courier user and
- group with the following commands:
-
-groupadd -g 30 courier &&
-useradd -c 'Courier Mail Server' -d /dev/null \
- -g courier -s /bin/false -u 30 courier
-
- The install script also expects a bin user. If you already have a
- user named bin, this
- step can be safely ignored. If necessary, create the user by
- issuing the following command as the
- root user:
-
-useradd -c 'bin' -d /dev/null -g bin -u 1 bin
-
- Courierfilter requires the directory
- /var/run/courier to store
- all the Courier PID and lock files.
- /var/lock/subsys also must exist
- for the master lock file for Courier. Issue
- the following commands as the
- root user to create these
- directories:
-
-install -v -d /var/run/courier -o courier -g courier -m755 &&
-install -v -d /var/lock/subsys -o root -g root -m755
-
- Build Courier as an unprivileged user
- with the following commands:
-
-./configure --prefix=/usr --libexecdir=/usr/lib/courier \
- --datadir=/usr/share/courier --sysconfdir=/etc/courier \
- --localstatedir=/var/lib/courier --with-piddir=/var/run/courier \
- --with-paranoid-smtpext --disable-autorenamesent \
- --enable-workarounds-for-imap-client-bugs --with-db=gdbm &&
-make
-
- Once again, become the root
- user and install Courier with the following
- commands:
-
-make install &&
-make install-configure
-
-
-
-
- Command Explanations
-
- --libexecdir=/usr/lib/courier: Specifies
- the directory which contains programs and libraries that should not be
- directly executed from the command-line.
-
- --datadir=/usr/share/courier: Specifies the
- directory where miscellaneous shell scripts,
- Perl scripts, and data files will be
- installed.
-
- --localstatedir=/var/spool/courier:
- Specifies the directory that will hold the mail queue, and other
- temporary data.
-
- --with-piddir=/var/run/courier: Specifies
- the directory where Courier's
- PID files are stored when
- Courier is active.
-
- --with-paranoid-smtpext: Be paranoid when
- negotiating Courier-specific ESMTP extensions with remote servers.
- The Courier mail server defines and implements
- certain experimental ESMTP extensions: XVERP and XEXDATA. Problems may
- result in the event that someone else uses the same name to implement
- some other extension. If this option is specified,
- Courier's ESMTP server will also advertise a
- dummy ESMTP capability called XCOURIEREXTENSIONS, and will not recognize
- any Courier-specific extensions unless the remote mail server also
- advertises this dummy ESMTP capability.
-
- --disable-autorenamesent: Do not rename the
- Sent folder every month. This option can also be controlled by the
- SQWEBMAIL_AUTORENAMESENT environment variable.
-
- --enable-workarounds-for-imap-client-bugs:
- There are several confirmed bugs in some IMAP clients that do not properly
- implement the IMAP4rev1 protocol. This option enables some workarounds for
- those buggy IMAP clients. NOTE: make check will fail if
- this option is used. You should first configure without this option, and
- if all post-configuration tests succeed, rerun configure
- with this option and recompile.
-
- --with-db=gdbm:
- Courier requires either the
- GDBM or the DB
- database library. GDBM is used if both are
- present. This option forces the selection of
- GDBM as Courier
- is currently broken when used with DB.
-
-
-
- :
- Courier's webmail server can use spell
- checking, if configure finds
- ispell or if you explicitly set the location
- of Aspell.
-
- : Use this switch if you receive an error
- saying that the mime.types file could not be
- found.
-
-
-
-
- Configuring Courier
-
-
- Configuration Files
-
- /etc/courier/*
-
-
- /etc/courier/*
-
-
-
-
-
- Configuration Information
-
- While still as root,
- you will need to create the following files with the contents
- specified.
-
- /etc/courier/defaultdomain
-
-cat > /etc/courier/defaultdomain << "EOF"
-<yourdomain>
-EOF
-
- /etc/courier/me
-
-cat > /etc/courier/me << "EOF"
-<servername.yourdomain>
-EOF
-
- /etc/courier/locals
-
-cat > /etc/courier/locals << "EOF"
-localhost
-<yourdomain>
-EOF
-
- /etc/courier/esmtpacceptmailfor.dir/system
-
-cat > /etc/courier/esmtpacceptmailfor.dir/system << "EOF"
-localhost
-<yourdomain>
-EOF
-
- You will also need to edit the
- /etc/courier/aliases/system file and change the
- following entry.
-
-postmaster: <your administrator email>
-
- If you want to deny access from some hosts from sending mail,
- you will need to edit the
- /etc/courier/smtpaccess/default file.
-
- If you wish to host mail for non-local domains including virtual
- domains, you must add them to
- /etc/courier/hosteddomains. This file should exist
- whether you need a hosted domain list or not:
-
-touch /etc/courier/hosteddomains
-
- After the above steps are completed you will need to run the
- following commands:
-
-makesmtpaccess &&
-makehosteddomains &&
-makealiases
-
- For each user, you will need to create a
- Maildir directory:
-
-cd /home/<username> &&
-maildirmake Maildir &&
-chown <username>.<username> Maildir -R
-
- If you wish to use SSL with Courier,
- you should obtain certificates and store them in
- /usr/share/courier. You can
- optionally create self-signed, test certificates with the following
- commands:
-
-mkesmtpdcert &&
-mkimapdcert &&
-mkpop3dcert
-
- All of Courier's configuration files reside
- in the directory /etc/courier/. For
- each service SMTP, POP3 and IMAP, you will have a standard config file, and
- an SSL config file. For each service that you wish to utilize, you will
- need to edit the configuration file, and change the
- <DAEMON>START variable from 'NO' to 'YES'. For
- example, to use SMTP with SSL, you'll need to edit
- /etc/courier/esmtpd-ssl and change the value of
- 'ESMTPDSSLSTART' to 'YES'. Make the same change for each service
- configuration that you wish to use with
- Courier.
-
- If you wish to use LDAP, an LDAP configuration file should be
- created:
-
-echo "LDAPALIASDSTART=YES" > /etc/courier/ldapaliasd
-
- Similarly, if you wish to use webmail, you should create the webmail
- configuration file:
-
-echo "WEBMAILDSTART=YES" > /etc/courier/webmaild
-
- You will also need to copy the webmail file
- from /usr/lib/courier/courier/webmail to the
- cgi-bin directory of your
- Apache server.
-
-cp -v -a /usr/lib/courier/courier/webmail/webmail /srv/www/cgi-bin
-
- You will then need to copy the images to a directory under your
- htdocs directory of your
- Apache server. The directory needs to be named
- webmail or you need to specify it
- during the configure phase with
- .
-
-cp -v -a /usr/share/courier/sqwebmail/images /srv/www/htdocs/webmail
-
- If you wish to utilize the webadmin utility, you will need to copy
- the webadmin file from
- /usr/lib/courier/courier/webmail
- to your cgi-bin directory of your
- Apache server.
-
-cp -v -a /usr/lib/courier/courier/webmail/webadmin /srv/www/cgi-bin
-
- You also need to put the password into the file
- /etc/courier/webadmin/password:
-
-cat > /etc/courier/webadmin/password << "EOF"
-<password>
-EOF
-
- If you are not using SSL on your Apache
- server, you will also need to add
- /etc/courier/webadmin/unsecureok, so you will be
- able to use your web based administration tool.
-
-touch /etc/courier/webadmin/unsecureok
-
- If you use Linux-PAM on your system,
- you will need to create the PAM configuration files:
-
-cat > /etc/pam.d/esmtp << "EOF"
-# Begin /etc/pam.d/esmtp
-
-auth required pam_unix.so try_first_pass
-account required pam_unix.so
-session required pam_unix.so
-
-# End /etc/pam.d/esmtp
-EOF
-cat > /etc/pam.d/pop3 << "EOF"
-# Begin /etc/pam.d/pop3
-
-auth required pam_unix.so try_first_pass
-account required pam_unix.so
-session required pam_unix.so
-
-# End /etc/pam.d/pop3
-EOF
-cat > /etc/pam.d/imap << "EOF"
-# Begin /etc/pam.d/imap
-
-auth required pam_unix.so try_first_pass
-account required pam_unix.so
-session required pam_unix.so
-
-# End /etc/pam.d/imap
-EOF
-cat > /etc/pam.d/webmail << "EOF"
-# Begin /etc/pam.d/webmail
-
-auth required pam_unix.so try_first_pass
-account required pam_unix.so
-session required pam_unix.so
-
-# End /etc/pam.d/webmail
-EOF
-
-
-
-
- Boot Script
-
- Finally, if you wish to start the
- Courier server at boot, install the
- /etc/rc.d/init.d/courier bootscript included
- in the package.
-
-
- courier
-
-
-make install-courier
-
-
-
-
-
-
- Configuring for Virtual Users
-
- These instructions will configure Courier
- to lookup virtual users in a MySQL database.
- Begin by making the following changes to
- /etc/courier/authmysqlrc:
-
-MYSQL_SERVER localhost
-MYSQL_USERNAME courier
-MYSQL_PASSWORD <your choice>
-MYSQL_SOCKET /var/run/mysql/mysql.sock
-MYSQL_PORT 3306
-MYSQL_DATABASE courier_mail
-MYSQL_USER_TABLE users
-MYSQL_CLEAR_PWFIELD clear
-DEFAULT DOMAIN <your domain>
-MYSQL_QUOTA_FIELD quota
-
- Connect to MySQL:
-
-mysql -p
-
- Create the courier_mail database and setup
- the users table:
-
-CREATE DATABASE courier_mail;
-USE courier_mail
-CREATE TABLE users (
-id char(128) DEFAULT '' NOT NULL,
-crypt char(128) DEFAULT '' NOT NULL,
-clear char(128) DEFAULT '' NOT NULL,
-name char(128) DEFAULT '' NOT NULL,
-uid int(10) unsigned DEFAULT '65534' NOT NULL,
-gid int(10) unsigned DEFAULT '65534' NOT NULL,
-home char(255) DEFAULT '' NOT NULL,
-quota char(255) DEFAULT '' NOT NULL,
-KEY id (id(128))
-);
-
- Grant all privileges to the courier user created earlier:
-
-GRANT ALL PRIVILEGES ON *.* TO courier@localhost \
- IDENTIFIED BY '<password>' WITH GRANT OPTION;
-QUIT
-
- Create a virtual mailman user and group:
-
-groupadd -g 35 vmailman &&
-useradd -c 'Virtual Mailman' -g vmailman -m -k /dev/null -u 35 vmailman
-
- Create a mail directory for a new virtual user:
-
-cd /home/vmailman &&
-mkdir -v <virtual_user> &&
-cd <virtual_user> &&
-maildirmake Maildir &&
-chown -v vmailman.vmailman Maildir -R
-
- Now, connect to the MySQL database as
- the courier user:
-
-mysql -u courier -p
-
- To add the virtual user you need to enter at least one version of the
- password; either clear text or encrypted.
-
- Add the first virtual user with the following commands:
-
-USE courier_mail
-INSERT INTO users VALUES (
-'<virtual_users>@<domain.com>,
-'<encrypted password or blank>',
-'<clear text password or blank>',
-'<User's Name>',
-9000,
-9000,
-'<location of Maildir>',
-'<Quota in Bytes'>
-);
-QUIT
-
- For example:
-
-INSERT INTO users VALUES (
-'blfsuser@&lfs-domainname;',
-'',
-'password',
-'BLFS User',
-9000,
-9000,
-'/home/vmailman/blfsuser',
-''
-);
-
-
-
-
-
-
-
-
- Contents
-
-
- Installed Programs
- Installed Libraries
- Installed Directories
-
-
- addcr, authenumerate, cancelmsg, courier, courier-config,
- courieresmtpd, courierfilter, courierlogger, couriermlm, couriertcpd,
- couriertls, deliverquota, dotforward, esmtpd, esmtpd-msa, esmtpd-ssl,
- filterctl, imapd, imapd-ssl, lockmail, mailbot, maildiracl, maildirkw,
- maildirmake, maildrop, mailq, makeacceptmailfor, makealiases, makedat,
- makehosteddomains, makemime, makepercentrelay, makesmtpaccess,
- makesmtpaccess-msa, makeuserdb, makeuucpneighbors, mimegpg,
- mkesmtpdcert, mkimapdcert, mkpop3dcert, pop3d, pop3d-ssl, preline,
- pw2userdb, reformail, reformime, rmail, sendmail, sharedindexinstall,
- sharedindexsplit, showconfig, showmodules, testmxlookup, userdb,
- userdbpw, vchkpw2userdb, webgpg, and webmaild
- None
- /etc/courier, /usr/lib/courier, /usr/share/courier, /var/lib/courier,
- /var/lock/subsys, /var/run/courier, and /var/spool/courier
-
-
-
-
- Short Descriptions
-
-
-
-
- cancelmsg
-
- removes a message from the mail queue.
-
- cancelmsg
-
-
-
-
-
- courier
-
- is an administrative command used to control the
- Courier scheduling engine.
-
- courier
-
-
-
-
-
- courierfax
-
- sends email messages by fax.
-
- courierfax
-
-
-
-
-
- courierfilter
-
- starts and stops all mail filters installed by
- filterctl.
-
- courierfilter
-
-
-
-
-
- courierldapaliasd
-
- supports mail address aliasing using an LDAP directory.
-
- courierldapaliasd
-
-
-
-
-
- courierlogger
-
- captures error messages from other
- Courier applications and forwards them
- to the system logger.
-
- courierlogger
-
-
-
-
-
- couriermlm
-
- sets up, maintains, and manages mailing lists.
-
- couriermlm
-
-
-
-
-
- courierperlfilter
-
- is a sample filter written in
- Perl.
-
- courierperlfilter
-
-
-
-
-
- courierpop3d
-
- is a Courier
- POP3 server.
-
- courierpop3d
-
-
-
-
-
- courierpop3login
-
- reads the POP3 userid and password and
- passes them to the authentication modules.
-
- courierpop3login
-
-
-
-
-
- couriertcpd
-
- accepts incoming network connections, and runs other
- Courier programs after establishing each
- network connection.
-
- couriertcpd
-
-
-
-
-
- couriertls
-
- is used by applications to encrypt a network connection
- using SSL/TLS.
-
- couriertls
-
-
-
-
-
- dotforward
-
- is a compatibility module that reads forwarding
- instructions in $HOME/.forward.
-
- dotforward
-
-
-
-
-
- dupfilter
-
- is a threaded filter that tries to block junk E-mail by
- attempting to detect multiple copies of the same message, which
- are rejected.
-
- dupfilter
-
-
-
-
-
- esmtpd
-
- is a control script for courieresmtpd.
-
- esmtpd
-
-
-
-
-
- esmtpd-msa
-
- is a control script for courieresmtpd, but adds message
- submission port 587 for the MSA protocol.
-
- esmtpd-msa
-
-
-
-
-
- filterctl
-
- installs or uninstalls global mail filters.
-
- filterctl
-
-
-
-
-
- imapd
-
- is the Courier-IMAP server.
-
- imapd
-
-
-
-
-
- lockmail
-
- is a helper utility for locking mailbox files.
-
- lockmail
-
-
-
-
-
- mailbot
-
- is a MIME-aware autoresponder utility.
-
- mailbot
-
-
-
-
-
- maildiracl
-
- manages access control lists.
-
- maildiracl
-
-
-
-
-
- maildirkw
-
- modifies Courier-IMAP compatible
- maildir message keywords.
-
- maildirkw
-
-
-
-
-
- maildirmake
-
- creates maildirs, and maildir folders.
-
- maildirmake
-
-
-
-
-
- maildrop
-
- is a replacement local mail delivery agent that includes a
- mail filtering language.
-
- maildrop
-
-
-
-
-
- mailq
-
- displays a list of all messages that have not been
- delivered yet.
-
- mailq
-
-
-
-
-
- makeacceptmailfor
-
- builds a list of domains to accept mail for, from the
- /etc/courier/esmtpacceptmailfor.dir
- directory.
-
- makeacceptmailfor
-
-
-
-
-
- makealiases
-
- builds an alias database from one or more plain text
- source files.
-
- makealiases
-
-
-
-
-
- makedat
-
- is a utility to create GDBM or
- DB files from plain text files.
-
- makedat
-
-
-
-
-
- makehosteddomains
-
- rebuilds the contents of the hosteddomains database from the
- contents of /etc/courier/hosteddomains.
-
- makehosteddomains
-
-
-
-
-
- makemime
-
- creates MIME-formatted messages from one
- or more files.
-
- makemime
-
-
-
-
-
- makepercentrelay
-
- builds a list of %-relayed domains from the
- percentrelay.dir directory.
-
- makepercentrelay
-
-
-
-
-
- makesmtpaccess
-
- builds ESMTP server access files from the
- /etc/courier/smtpaccess
- directory.
-
- makesmtpaccess
-
-
-
-
-
- makesmtpaccess-msa
-
- builds ESMTP server access files from the
- /etc/courier/smtpaccess
- directory. This esmtp list is for the MSA protocol.
-
- makesmtpaccess-msa
-
-
-
-
-
- makeuserdb
-
- builds a user/password db from the contents of /etc/courier/userdb.
-
- makeuserdb
-
-
-
-
-
- mimegpg
-
- signs, encrypts, or decrypts MIME-formatted
- email messages using GnuPG.
-
- mimegpg
-
-
-
-
-
- mkesmtpdcert
-
- creates a secure SMTP test certificate.
-
- mkesmtpdcert
-
-
-
-
-
- mkimapdcert
-
- creates a secure IMAP test certificate.
-
- mkimapdcert
-
-
-
-
-
- mkpop3dcert
-
- creates a secure POP3 test certificate.
-
- mkpop3dcert
-
-
-
-
-
- pop3d
-
- is a wrapper script for couriertcpd to
- start and stop the POP3 service.
-
- pop3d
-
-
-
-
-
- pop3d-ssl
-
- is a wrapper script for couriertcpd to
- start and stop the POP3 over SSL service.
-
- pop3d-ssl
-
-
-
-
-
- preline
-
- prepends legacy mbox headers to mail
- messages.
-
- preline
-
-
-
-
-
- reformail
-
- reads a message on standard input, reformats it in some
- way, and writes the message to standard output.
-
- reformail
-
-
-
-
-
- reformime
-
- is a utility for reformatting MIME messages.
-
- reformime
-
-
-
-
-
- sendmail
-
- reads an email message and delivers the message to its
- recipients.
-
- sendmail
-
-
-
-
-
- submit
-
- submits messages to Courier for
- processing.
-
- submit
-
-
-
-
-
- testmxlookup
-
- lists the names and IP addresses of mail
- relays that receive mail for the domain.
-
- testmxlookup
-
-
-
-
-
- userdb
-
- is a script to individually manipulate entries in
- /etc/courier/userdb.
-
- userdb
-
-
-
-
-
- userdbpw
-
- reads a single line of text on standard input, encrypts
- it, and prints the encrypted result to standard output.
-
- userdbpw
-
-
-
-
-
-
-
-
-
Index: server/mail/mail.xml
===================================================================
--- server/mail/mail.xml (revision 7df2e1ae72002db4302f44d89cfde9f5033637c3)
+++ server/mail/mail.xml (revision 4e48de46ec87726c2f935c0670b5ee21fd02e445)
@@ -23,5 +23,4 @@
server (Courier-IMAP).
-
Index: server/major/major.xml
===================================================================
--- server/major/major.xml (revision 7df2e1ae72002db4302f44d89cfde9f5033637c3)
+++ server/major/major.xml (revision 4e48de46ec87726c2f935c0670b5ee21fd02e445)
@@ -21,10 +21,6 @@
-
-
-
-
Index: rver/major/xinetd.xml
===================================================================
--- server/major/xinetd.xml (revision 7df2e1ae72002db4302f44d89cfde9f5033637c3)
+++ (revision )
@@ -1,755 +1,0 @@
-
-
- %general-entities;
-
-
-
-
-
-
-
-]>
-
-
-
-
-
- $LastChangedBy$
- $Date$
-
-
- xinetd-&xinetd-version;
-
-
- Xinetd
-
-
-
- Introduction to xinetd
-
- xinetd is the eXtended InterNET services
- daemon, a secure replacement for inetd.
-
- Package Information
-
-
- Download (HTTP):
-
-
- Download (FTP):
-
-
- Download MD5 sum: &xinetd-md5sum;
-
-
- Download size: &xinetd-size;
-
-
- Estimated disk space required: &xinetd-buildsize;
-
-
- Estimated build time: &xinetd-time;
-
-
-
- xinetd Dependencies
-
- Optional
- and
-
-
- User Notes:
-
-
-
-
-
- Installation of xinetd
-
- Install xinetd by running the following
- commands:
-
-./configure --prefix=/usr --with-loadavg &&
-make
-
- This package does not come with a test suite.
-
- Now, as the root user:
-
-make install
-
-
-
-
- Configuring xinetd
-
-
- Config Files
-
- /etc/xinetd.conf and
- /etc/xinetd.d/*
-
-
- /etc/xinetd.conf
-
-
-
- /etc/xinetd.d/*
-
-
-
-
-
- Configuration Information
-
- Ensure the path to all daemons is
- /usr/sbin, rather than the default
- path of /usr/etc, and install the
- xinetd configuration files by running the
- following commands as the root
- user:
-
-cat > /etc/xinetd.conf << "EOF"
-# Begin /etc/xinetd
-# Configuration file for xinetd
-#
-
-defaults
-{
- instances = 60
- log_type = SYSLOG daemon
- log_on_success = HOST PID USERID
- log_on_failure = HOST USERID
- cps = 25 30
-}
-
-# All service files are stored in the /etc/xinetd.d directory
-#
-includedir /etc/xinetd.d
-# End /etc/xinetd
-EOF
-
- All of the following files have the statement, "disable = yes".
- To activate any of the services, this statement will need to be changed
- to "disable = no".
-
-
- The following files are listed to demonstrate classic
- xinetd applications. In many cases, these
- applications are not needed. In some cases, the applications are
- considered security risks. For example, telnet,
- rlogin, rexec, and
- rsh transmit unencrypted usernames and passwords
- over the network and can be easily replaced with a more secure
- alternative: ssh.
-
-
-install -v -d -m755 /etc/xinetd.d &&
-cat > /etc/xinetd.d/login << "EOF" &&
-# Begin /etc/xinetd.d/login
-
-service login
-{
- disable = yes
- socket_type = stream
- protocol = tcp
- wait = no
- user = root
- server = /usr/sbin/in.rlogind
- log_type = SYSLOG local4 info
-}
-
-# End /etc/xinetd.d/login
-EOF
-cat > /etc/xinetd.d/shell << "EOF" &&
-# Begin /etc/xinetd.d/shell
-
-service shell
-{
- disable = yes
- socket_type = stream
- wait = no
- user = root
- instances = UNLIMITED
- flags = IDONLY
- log_on_success += USERID
- server = /usr/sbin/in.rshd
-}
-
-# End /etc/xinetd.d/shell
-EOF
-cat > /etc/xinetd.d/exec << "EOF" &&
-# Begin /etc/xinetd.d/exec
-
-service exec
-{
- disable = yes
- socket_type = stream
- wait = no
- user = root
- server = /usr/sbin/in.rexecd
-}
-
-# End /etc/xinetd.d/exec
-EOF
-cat > /etc/xinetd.d/comsat << "EOF" &&
-# Begin /etc/xinetd.d/comsat
-
-service comsat
-{
- disable = yes
- socket_type = dgram
- wait = yes
- user = nobody
- group = tty
- server = /usr/sbin/in.comsat
-}
-
-# End /etc/xinetd.d/comsat
-EOF
-cat > /etc/xinetd.d/talk << "EOF" &&
-# Begin /etc/xinetd.d/talk
-
-service talk
-{
- disable = yes
- socket_type = dgram
- wait = yes
- user = root
- server = /usr/sbin/in.talkd
-}
-
-# End /etc/xinetd.d/talk
-EOF
-cat > /etc/xinetd.d/ntalk << "EOF" &&
-# Begin /etc/xinetd.d/ntalk
-
-service ntalk
-{
- disable = yes
- socket_type = dgram
- wait = yes
- user = root
- server = /usr/sbin/in.ntalkd
-}
-
-# End /etc/xinetd.d/ntalk
-EOF
-cat > /etc/xinetd.d/telnet << "EOF" &&
-# Begin /etc/xinetd.d/telnet
-
-service telnet
-{
- disable = yes
- socket_type = stream
- wait = no
- user = root
- server = /usr/sbin/in.telnetd
- bind = 127.0.0.1
- log_on_failure += USERID
-}
-
-service telnet
-{
- disable = yes
- socket_type = stream
- wait = no
- user = root
-# server = /usr/sbin/in.telnetd
- bind = 192.231.139.175
- redirect = 128.138.202.20 23
- log_on_failure += USERID
-}
-
-# End /etc/xinetd.d/telnet
-EOF
-cat > /etc/xinetd.d/ftp << "EOF" &&
-# Begin /etc/xinetd.d/ftp
-
-service ftp
-{
- disable = yes
- socket_type = stream
- wait = no
- user = root
- server = /usr/sbin/in.ftpd
- server_args = -l
- instances = 4
- log_on_success += DURATION USERID
- log_on_failure += USERID
- access_times = 2:00-8:59 12:00-23:59
- nice = 10
-}
-
-# End /etc/xinetd.d/ftp
-EOF
-cat > /etc/xinetd.d/tftp << "EOF" &&
-# Begin /etc/xinetd.d/tftp
-
-service tftp
-{
- disable = yes
- socket_type = dgram
- wait = yes
- user = root
- server = /usr/sbin/in.tftpd
- server_args = -s /tftpboot
-}
-
-# End /etc/xinetd.d/tftp
-EOF
-cat > /etc/xinetd.d/finger << "EOF" &&
-# Begin /etc/xinetd.d/finger
-
-service finger
-{
- disable = yes
- socket_type = stream
- wait = no
- user = nobody
- server = /usr/sbin/in.fingerd
-}
-
-# End /etc/xinetd.d/finger
-EOF
-cat > /etc/xinetd.d/systat << "EOF" &&
-# Begin /etc/xinetd.d/systat
-
-service systat
-{
- disable = yes
- socket_type = stream
- wait = no
- user = nobody
- server = /usr/bin/ps
- server_args = -auwwx
- only_from = 128.138.209.0
- log_on_success = HOST
-}
-
-# End /etc/xinetd.d/systat
-EOF
-cat > /etc/xinetd.d/netstat << "EOF" &&
-# Begin /etc/xinetd.d/netstat
-
-service netstat
-{
- disable = yes
- socket_type = stream
- wait = no
- user = nobody
- server = /usr/ucb/netstat
- server_args = -f inet
- only_from = 128.138.209.0
- log_on_success = HOST
-}
-
-# End /etc/xinetd.d/netstat
-EOF
-cat > /etc/xinetd.d/echo << "EOF" &&
-# Begin /etc/xinetd.d/echo
-
-service echo
-{
- disable = yes
- type = INTERNAL
- id = echo-stream
- socket_type = stream
- protocol = tcp
- user = root
- wait = no
-}
-
-service echo
-{
- disable = yes
- type = INTERNAL
- id = echo-dgram
- socket_type = dgram
- protocol = udp
- user = root
- wait = yes
-}
-
-# End /etc/xinetd.d/echo
-EOF
-cat > /etc/xinetd.d/chargen << "EOF" &&
-# Begin /etc/xinetd.d/chargen
-
-service chargen
-{
- disable = yes
- type = INTERNAL
- id = chargen-stream
- socket_type = stream
- protocol = tcp
- user = root
- wait = no
-}
-
-service chargen
-{
- disable = yes
- type = INTERNAL
- id = chargen-dgram
- socket_type = dgram
- protocol = udp
- user = root
- wait = yes
-}
-
-# End /etc/xinetd.d/chargen
-EOF
-cat > /etc/xinetd.d/daytime << "EOF" &&
-# Begin /etc/xinetd.d/daytime
-
-service daytime
-{
- disable = yes
- type = INTERNAL
- id = daytime-stream
- socket_type = stream
- protocol = tcp
- user = root
- wait = no
-}
-
-service daytime
-{
- disable = yes
- type = INTERNAL
- id = daytime-dgram
- socket_type = dgram
- protocol = udp
- user = root
- wait = yes
-}
-
-# End /etc/xinetd.d/daytime
-EOF
-cat > /etc/xinetd.d/time << "EOF" &&
-# Begin /etc/xinetd.d/time
-
-service time
-{
- disable = yes
- type = INTERNAL
- id = time-stream
- socket_type = stream
- protocol = tcp
- user = root
- wait = no
-}
-
-
-service time
-{
- disable = yes
- type = INTERNAL
- id = time-dgram
- socket_type = dgram
- protocol = udp
- user = root
- wait = yes
-}
-
-# End /etc/xinetd.d/time
-EOF
-cat > /etc/xinetd.d/rstatd << "EOF" &&
-# Begin /etc/xinetd.d/rstatd
-
-service rstatd
-{
- disable = yes
- type = RPC
- flags = INTERCEPT
- rpc_version = 2-4
- socket_type = dgram
- protocol = udp
- server = /usr/sbin/rpc.rstatd
- wait = yes
- user = root
-}
-
-# End /etc/xinetd.d/rstatd
-EOF
-cat > /etc/xinetd.d/rquotad << "EOF" &&
-# Begin /etc/xinetd.d/rquotad
-
-service rquotad
-{
- disable = yes
- type = RPC
- rpc_version = 1
- socket_type = dgram
- protocol = udp
- wait = yes
- user = root
- server = /usr/sbin/rpc.rstatd
-}
-
-# End /etc/xinetd.d/rquotad
-EOF
-cat > /etc/xinetd.d/rusersd << "EOF" &&
-# Begin /etc/xinetd.d/rusersd
-
-service rusersd
-{
- disable = yes
- type = RPC
- rpc_version = 1-2
- socket_type = dgram
- protocol = udp
- wait = yes
- user = root
- server = /usr/sbin/rpc.rusersd
-}
-
-# End /etc/xinetd.d/rusersd
-EOF
-cat > /etc/xinetd.d/sprayd << "EOF" &&
-# Begin /etc/xinetd.d/sprayd
-
-service sprayd
-{
- disable = yes
- type = RPC
- rpc_version = 1
- socket_type = dgram
- protocol = udp
- wait = yes
- user = root
- server = /usr/sbin/rpc.sprayd
-}
-
-# End /etc/xinetd.d/sprayd
-EOF
-cat > /etc/xinetd.d/walld << "EOF" &&
-# Begin /etc/xinetd.d/walld
-
-service walld
-{
- disable = yes
- type = RPC
- rpc_version = 1
- socket_type = dgram
- protocol = udp
- wait = yes
- user = nobody
- group = tty
- server = /usr/sbin/rpc.rwalld
-}
-
-# End /etc/xinetd.d/walld
-EOF
-cat > /etc/xinetd.d/irc << "EOF"
-# Begin /etc/xinetd.d/irc
-
-service irc
-{
- disable = yes
- socket_type = stream
- wait = no
- user = root
- flags = SENSOR
- type = INTERNAL
- bind = 192.168.1.30
- deny_time = 60
-}
-
-# End /etc/xinetd.d/irc
-EOF
-
-
- /etc/xinetd.d/login
-
-
-
- /etc/xinetd.d/shell
-
-
-
- /etc/xinetd.d/exec
-
-
-
- /etc/xinetd.d/comsat
-
-
-
- /etc/xinetd.d/talk
-
-
-
- /etc/xinetd.d/ntalk
-
-
-
- /etc/xinetd.d/telnet
-
-
-
- /etc/xinetd.d/ftp
-
-
-
- /etc/xinetd.d/tftp
-
-
-
- /etc/xinetd.d/systat
-
-
-
- /etc/xinetd.d/finger
-
-
-
- /etc/xinetd.d/netstat
-
-
-
- /etc/xinetd.d/echo
-
-
-
- /etc/xinetd.d/chargen
-
-
-
- /etc/xinetd.d/daytime
-
-
-
- /etc/xinetd.d/time
-
-
-
- /etc/xinetd.d/rstatd
-
-
-
- /etc/xinetd.d/rquotad
-
-
-
- /etc/xinetd.d/ruserd
-
-
-
- /etc/xinetd.d/sprayd
-
-
-
- /etc/xinetd.d/walld
-
-
-
- /etc/xinetd.d/irc
-
-
- The format of the /etc/xinetd.conf is
- documented in the xinetd.conf.5 man page. Further
- information can be found at .
-
-
-
-
- Boot Script
-
- As the root user, install
- the /etc/rc.d/init.d/xinetd init script included in
- the package.
-
-
- xinetd
-
-
-make install-xinetd
-
- As the root user,
- use the new boot script to start xinetd:
-
-/etc/rc.d/init.d/xinetd start
-
- Checking the /var/log/daemon.log file
- should prove quite entertaining. This file may contain entries
- similar to the following:
-
-Aug 22 21:40:21 dps10 xinetd[2696]: Server /usr/sbin/in.rlogind is not
-executable [line=29]
-Aug 22 21:40:21 dps10 xinetd[2696]: Error parsing attribute server -
-DISABLING SERVICE [line=29]
-Aug 22 21:40:21 dps10 xinetd[2696]: Server /usr/sbin/in.rshd is not
-executable [line=42]
-
- These errors are because most of the servers
- xinetd is trying to control are not
- installed yet.
-
-
-
-
-
-
- Contents
-
-
- Installed Programs
- Installed Libraries
- Installed Directories
-
-
- itox, xconv.pl, and xinetd
- None
- /etc/xinetd.d/
-
-
-
-
- Short Descriptions
-
-
-
-
- itox
-
- is a utility used for converting
- inetd.conf files to
- xinetd.conf format.
-
- itox
-
-
-
-
-
- xconv.pl
-
- is a Perl script used for
- converting inetd.conf files to
- xinetd.conf format, similar to
- itox.
-
- xconv.pl
-
-
-
-
-
- xinetd
-
- is the Internet services daemon.
-
- xinetd
-
-
-
-
-
-
-
-
-
Index: rver/other/leafnode.xml
===================================================================
--- server/other/leafnode.xml (revision 7df2e1ae72002db4302f44d89cfde9f5033637c3)
+++ (revision )
@@ -1,332 +1,0 @@
-
-
- %general-entities;
-
-
-
-
-
-
-
-]>
-
-
-
-
-
- $LastChangedBy$
- $Date$
-
-
- Leafnode-&leafnode-version;
-
-
- Leafnode
-
-
-
- Introduction to Leafnode
-
- Leafnode is an NNTP server designed
- for small sites to provide a local USENET spool.
-
- Package Information
-
-
- Download (HTTP):
-
-
- Download (FTP):
-
-
- Download MD5 sum: &leafnode-md5sum;
-
-
- Download size: &leafnode-size;
-
-
- Estimated disk space required: &leafnode-buildsize;
-
-
- Estimated build time: &leafnode-time;
-
-
-
- Leafnode Dependencies
-
- Required
- and
-
-
- Recommended
-
-
-
-
-
- User Notes:
-
-
-
-
-
- Installation of Leafnode
-
- As the root user, create
- the group and user news,
- if not present:
-
-groupadd -g 36 news &&
-useradd -c "Leafnode News Server" -d /var/spool/news -g news \
- -u 36 news
-
- Install Leafnode by running the following
- commands:
-
-./configure --prefix=/usr \
- --localstatedir=/var --sysconfdir=/etc/leafnode \
- --with-lockfile=/var/lock/leafnode/fetchnews.lck &&
-make
- To test the results, issue: make check.
- Now, as the root user:
-
-make install
-
-
-
-
- Command Explanations
-
- --localstatedir=/var: Change the default
- spool directory of /usr/var.
-
- --sysconfdir=/etc/leafnode:
- Leafnode reads its configuration data from a
- file called config which will be created in
- /etc/leafnode to
- avoid any potential conflict with other packages.
-
- make update: Run this command if you are upgrading
- from a very old version of Leafnode.
-
-
-
-
- Configuring Leafnode
-
-
- Config Files
-
- /etc/leafnode/config,
- /etc/nntpserver,
- /etc/sysconfig/createfiles
- /etc/inetd.conf or
-
-
-
- /etc/leafnode/config
-
-
-
- /etc/nntpserver
-
-
-
- /etc/inetd.conf
-
-
-
- /etc/sysconfig/createfiles
-
-
-
-
-
- Configuration Information
-
- The /etc/leafnode/config file must be
- edited to reflect the name of the upstream NNTP provider. Copy the
- example configuration file to /etc/leafnode/config
- and save the original for reference:
-
-cp /etc/leafnode/config.example /etc/leafnode/config
-
- Change the
-
-server =
-
- entry to reflect your news provider.
-
- The /etc/nntpserver file must contain
- 127.0.0.1 to prevent news clients from reading news from the upstream
- feed. Create this file using the following command:
-
-cat > /etc/nntpserver << "EOF"
-127.0.0.1
-
-EOF
-
- The /etc/rc.d/init.d/cleanfs script, part
- of the LFS bootscript package, will remove the
- /var/lock/leafnode directory
- during the system boot sequence. Install the following line in the
- /etc/sysconfig/createfiles file to re-create the
- directory:
-
-/var/lock/leafnode dir 2775 news news
-
- Leafnode may be configured to
- use inetd by adding an entry to the
- /etc/inetd.conf file with the following
- command:
-
-echo "nntp stream tcp nowait news /usr/sbin/tcpd /usr/sbin/leafnode" \
->> /etc/inetd.conf
-
- Issue a killall -HUP inetd to reread the
- changed inetd.conf file.
-
- Add entries to the root
- or news user's crontab to run
- the fetchnews and texpire commands
- at the desired time intervals.
-
-
-
-
-
-
- Contents
-
-
- Installed Programs
- Installed Libraries
- Installed Directories
-
-
- applyfilter, checkgroups, fetchnews, leafnode,
- leafnode-version, newsq, and texpire
- None
- /etc/leafnode, /var/lock/leafnode, and /var/spool/news
-
-
-
-
- Short Descriptions
-
-
-
-
- applyfilter
-
- filters newsgroup articles according to regular
- expressions.
-
- applyfilter
-
-
-
-
-
- checkgroups
-
- inserts newsgroup titles into the newsgroup database.
-
- checkgroups
-
-
-
-
-
- fetchnews
-
- sends posted articles to and retrieves new articles from an
- upstream news server.
-
- fetchnews
-
-
-
-
-
- leafnode
-
- is an NNTP server daemon.
-
- leafnode
-
-
-
-
-
- leafnode-version
-
- prints the Leafnode version.
-
- leafnode-version
-
-
-
-
-
- newsq
-
- shows articles waiting to be sent upstream.
-
- newsq
-
-
-
-
-
- texpire
-
- expires old articles and unread groups.
-
- texpire
-
-
-
-
-
-
-
-
-
Index: server/other/other.xml
===================================================================
--- server/other/other.xml (revision 7df2e1ae72002db4302f44d89cfde9f5033637c3)
+++ server/other/other.xml (revision 4e48de46ec87726c2f935c0670b5ee21fd02e445)
@@ -23,12 +23,7 @@
that you can analyze the risks.
-
-
-
-