| 1 | [wiki:Basic Basic setup] |
| 2 | |
| 3 | = Additional Infos = |
| 4 | packages that i had to emerge manually:[[BR]] |
| 5 | sudo pam (install this first !!!) |
| 6 | |
| 7 | stuff that i had to change:[[BR]] |
| 8 | in /etc/portage/package.use:[[BR]] |
| 9 | dev-libs/cyrus-sasl authdaemond urandom to dev-libs/cyrus-sasl authdaemond urandom pam[[BR]] |
| 10 | [[BR]] |
| 11 | in /etc/courier-imap/imapd, /etc/courier-imap/imapd-ssl, /etc/courier-imap/pop3d, /etc/courier-imap/pop3d-ssl:[[BR]] |
| 12 | MAILDIR=.maildir to MAILDIR=Maildir[[BR]] |
| 13 | MAILDIRPATH=.maildir to MAILDIRPATH=Maildir[[BR]] |
| 14 | [[BR]] |
| 15 | in /etc/courier-imap/imapd:[[BR]] |
| 16 | MAXDAEMONS=40 to MAXDAEMONS=200, MAXPERIP=4 to MAXPERIP=40[[BR]] |
| 17 | [[BR]] |
| 18 | in /etc/pam.d:[[BR]] |
| 19 | had to create file smtp (should not be created automatically if smtp is installed after pam !!!)[[BR]] |
| 20 | [[BR]] |
| 21 | in /etc/mail/spamassassin:[[BR]] |
| 22 | # mkdir bayes[[BR]] |
| 23 | # chmod 777 bayes[[BR]] |
| 24 | add ...[[BR]] |
| 25 | [[BR]] |
| 26 | in /etc/vhosts/webapp-config (to make webapp-config work with the ispconfig vhost root)[[BR]] |
| 27 | vhost_htdocs_insecure="htdocs" -> vhost_htdocs_insecure="web"[[BR]] |
| 28 | vhost_htdocs_secure="'htdocs-secure" -> vhost_htdocs_secure="web"[[BR]] |
| 29 | |
| 30 | don'ts (that i did):[[BR]] |
| 31 | during ispconfig install:[[BR]] |
| 32 | In step 7 ("Encrypting RSA private key of CA with a pass phrase for security [ca.key]")and step 8 ("Encrypting RSA private key of SERVER with a pass phrase for security [server.key]") of the certificate creation process you are asked if you want to encrypt the respective key now. Choose n there because otherwise you will always be asked for a password whenever you want to restart the ISPConfig system which means it cannot be restarted without human interaction![[BR]] |
| 33 | |
| 34 | in this case recreate the certs using:[[BR]] |
| 35 | |
| 36 | openssl genrsa -des3 -passout pass:caf2macg4 -out /root/ispconfig/httpd/conf/ssl.key/server.key2 1024[[BR]] |
| 37 | openssl req -new -passin pass:caf2macg4 -passout pass:caf2macg4 -key /root/ispconfig/httpd/conf/ssl.key/server.key2 -out /root/ispconfig/httpd/conf/ssl.csr/server.csr -days 365[[BR]] |
| 38 | openssl req -x509 -passin pass:caf2macg4 -passout pass:caf2macg4 -key /root/ispconfig/httpd/conf/ssl.key/server.key2 -in /root/ispconfig/httpd/conf/ssl.csr/server.csr -out /root/ispconfig/httpd/conf/ssl.crt/server.crt -days 365[[BR]] |
| 39 | openssl rsa -passin pass:caf2macg4 -in /root/ispconfig/httpd/conf/ssl.key/server.key2 -out /root/ispconfig/httpd/conf/ssl.key/server.key[[BR]] |
| 40 | chmod 400 /root/ispconfig/httpd/conf/ssl.key/server.key[[BR]] |
| 41 | [[BR]] |