para_configurar_ispconfig
Diferencias
Muestra las diferencias entre dos versiones de la página.
Ambos lados, revisión anteriorRevisión previaPróxima revisión | Revisión previaPróxima revisiónAmbos lados, revisión siguiente | ||
para_configurar_ispconfig [2015/07/13 18:33] – jlameiro | para_configurar_ispconfig [2015/07/15 22:13] – jlameiro | ||
---|---|---|---|
Línea 9: | Línea 9: | ||
Contenido: | Contenido: | ||
| | ||
- | | + | [[para_configurar_ispconfig# |
2. Synchronize the System Clock. | 2. Synchronize the System Clock. | ||
3. Install Postfix, Dovecot, MySQL, phpMyAdmin, rkhunter, binutils. | 3. Install Postfix, Dovecot, MySQL, phpMyAdmin, rkhunter, binutils. | ||
Línea 16: | Línea 16: | ||
4.2. PHP-FPM. | 4.2. PHP-FPM. | ||
5. Install PureFTPd And Quota. | 5. Install PureFTPd And Quota. | ||
+ | 6. Install Vlogger, Webalizer, And AWstats. | ||
+ | 7. Install fail2ban. | ||
+ | 8. Install ISPConfig 3. | ||
+ | 9. ISPConfig 3 Manual. | ||
+ | 10. Warning. | ||
| | ||
- | **1. Change The Default Shell.** | + | === **1. Change The Default Shell.** |
/bin/sh is a symlink to /bin/dash, however we need /bin/bash, not /bin/dash. Therefore we do this: | /bin/sh is a symlink to /bin/dash, however we need /bin/bash, not /bin/dash. Therefore we do this: | ||
Línea 206: | Línea 211: | ||
Afterwards, we can generate the SSL certificate as follows: | Afterwards, we can generate the SSL certificate as follows: | ||
< | < | ||
- | openssl req -x509 -nodes -days 7300 -newkey rsa:2048 -keyout / | + | openssl req -x509 -nodes -days 7300 -newkey rsa:2048 -keyout / |
+ | -out / | ||
</ | </ | ||
+ | Country Name (2 letter code) [AU]: <-- Enter your Country Name (e.g., " | ||
+ | |||
+ | State or Province Name (full name) [Some-State]: | ||
+ | |||
+ | Locality Name (eg, city) []: <-- Enter your City. | ||
+ | |||
+ | Organization Name (eg, company) [Internet Widgits Pty Ltd]: <-- Enter your Organization Name (e.g., the name of your company). | ||
+ | |||
+ | Organizational Unit Name (eg, section) []: <-- Enter your Organizational Unit Name (e.g. "IT Department" | ||
+ | |||
+ | Common Name (eg, YOUR name) []: <-- Enter the Fully Qualified Domain Name of the system (e.g. " | ||
+ | |||
+ | Email Address []: <-- Enter your Email Address. | ||
+ | |||
+ | Change the permissions of the SSL certificate: | ||
+ | < | ||
+ | chmod 600 / | ||
+ | </ | ||
+ | Then restart PureFTPd: | ||
+ | < | ||
+ | / | ||
+ | </ | ||
+ | Edit /etc/fstab. Mine looks like this (I added , | ||
+ | < | ||
+ | nano /etc/fstab | ||
+ | </ | ||
+ | < | ||
+ | # /etc/fstab: static file system information. | ||
+ | # | ||
+ | # Use ' | ||
+ | # device; this may be used with UUID= as a more robust way to name devices | ||
+ | # that works even if disks are added and removed. See fstab(5). | ||
+ | # | ||
+ | # | ||
+ | / | ||
+ | # /boot was on /dev/sda1 during installation | ||
+ | UUID=46d1bd79-d761-4b23-80b8-ad20cb18e049 /boot | ||
+ | / | ||
+ | / | ||
+ | </ | ||
+ | **6. Install Vlogger, Webalizer, And AWstats.** | ||
+ | |||
+ | Vlogger, webalizer, and AWstats can be installed as follows: | ||
+ | < | ||
+ | apt-get install vlogger webalizer awstats geoip-database libclass-dbi-mysql-perl | ||
+ | </ | ||
+ | Open / | ||
+ | < | ||
+ | nano / | ||
+ | </ | ||
+ | ... and comment out everything in that file: | ||
+ | < | ||
+ | # | ||
+ | |||
+ | #*/10 * * * * www-data [ -x / | ||
+ | |||
+ | # Generate static reports: | ||
+ | #10 03 * * * www-data [ -x / | ||
+ | </ | ||
+ | **7. Install fail2ban.** | ||
+ | |||
+ | This is optional but recommended, | ||
+ | < | ||
+ | apt-get install fail2ban | ||
+ | </ | ||
+ | To make fail2ban monitor PureFTPd and Dovecot, create the file / | ||
+ | < | ||
+ | nano / | ||
+ | </ | ||
+ | < | ||
+ | [pureftpd] | ||
+ | enabled | ||
+ | port = ftp | ||
+ | filter | ||
+ | logpath | ||
+ | maxretry = 3 | ||
+ | |||
+ | [dovecot-pop3imap] | ||
+ | enabled = true | ||
+ | filter = dovecot-pop3imap | ||
+ | action = iptables-multiport[name=dovecot-pop3imap, | ||
+ | logpath = / | ||
+ | maxretry = 5 | ||
+ | |||
+ | [sasl] | ||
+ | enabled | ||
+ | port = smtp | ||
+ | filter | ||
+ | logpath | ||
+ | maxretry = 3 | ||
+ | </ | ||
+ | Then create the following two filter files: | ||
+ | < | ||
+ | nano / | ||
+ | </ | ||
+ | < | ||
+ | [Definition] | ||
+ | failregex = .*pure-ftpd: | ||
+ | ignoreregex = | ||
+ | </ | ||
+ | < | ||
+ | nano / | ||
+ | </ | ||
+ | < | ||
+ | [Definition] | ||
+ | failregex = (?: pop3-login|imap-login): | ||
+ | ignoreregex = | ||
+ | </ | ||
+ | Restart fail2ban afterwards: | ||
+ | < | ||
+ | / | ||
+ | </ | ||
+ | **8. Install ISPConfig 3.** | ||
+ | |||
+ | To install ISPConfig 3 from the latest released version, do this: | ||
+ | < | ||
+ | cd /tmp | ||
+ | wget http:// | ||
+ | tar xfz ISPConfig-3-stable.tar.gz | ||
+ | cd ispconfig3_install/ | ||
+ | </ | ||
+ | The next step is to run | ||
+ | < | ||
+ | php -q install.php | ||
+ | </ | ||
+ | This will start the ISPConfig 3 installer. The installer will configure all services like Postfix, Dovecot, etc. for you. A manual setup as required for ISPConfig 2 (perfect setup guides) is not necessary. | ||
+ | < | ||
+ | -------------------------------------------------------------------------------- | ||
+ | _____ ___________ | ||
+ | |_ | ||
+ | | | \ `--.| |_/ / | / \/ ___ _ __ | |_ _ __ _ _/ / | ||
+ | | | `--. \ __/ | | / _ \| '_ \| _| |/ _` | |_ | | ||
+ | _| |_/\__/ / | | \__/\ (_) | | | | | | | (_| | ___\ \ | ||
+ | | ||
+ | __/ | | ||
+ | |___/ | ||
+ | -------------------------------------------------------------------------------- | ||
+ | |||
+ | >> Initial configuration | ||
+ | |||
+ | Operating System: Debian or compatible, unknown version. | ||
+ | </ | ||
+ | Following will be a few questions for primary configuration so be careful. | ||
+ | |||
+ | Default values are in [brackets] and can be accepted with . | ||
+ | |||
+ | Tap in " | ||
+ | |||
+ | Select language (en,de) [en]: <-- ENTER | ||
+ | |||
+ | Installation mode (standard, | ||
+ | |||
+ | Full qualified hostname (FQDN) of the server, eg server1.domain.tld | ||
+ | |||
+ | MySQL server hostname [localhost]: | ||
+ | |||
+ | MySQL root username [root]: <-- ENTER | ||
+ | |||
+ | MySQL root password []: <-- yourrootsqlpassword | ||
+ | |||
+ | MySQL database to create [dbispconfig]: | ||
+ | |||
+ | MySQL charset [utf8]: <-- ENTER | ||
+ | |||
+ | Country Name (2 letter code) [AU]: <-- ENTER | ||
+ | |||
+ | State or Province Name (full name) [Some-State]: | ||
+ | |||
+ | Locality Name (eg, city) []: <-- ENTER | ||
+ | |||
+ | Organization Name (eg, company) [Internet Widgits Pty Ltd]: <-- ENTER | ||
+ | |||
+ | Organizational Unit Name (eg, section) []: <-- ENTER | ||
+ | |||
+ | Common Name (e.g. server FQDN or YOUR name) []: <-- ENTER | ||
+ | |||
+ | Email Address []: <-- ENTER | ||
+ | |||
+ | ISPConfig Port [8080]: <-- ENTER | ||
+ | |||
+ | Do you want a secure (SSL) connection to the ISPConfig web interface (y,n) [y]: <-- ENTER | ||
+ | |||
+ | The installer automatically configures all underlying services, so no manual configuration is needed. | ||
+ | |||
+ | Afterwards you can access ISPConfig 3 under http(s):// | ||
+ | |||
+ | **9. ISPConfig 3 Manual.** | ||
+ | In order to learn how to use ISPConfig 3, I strongly recommend to https:// | ||
+ | |||
+ | **10. Warning.** | ||
+ | |||
+ | En algunas ocasiones, el enlace entre el ISPConfig y la aplicación phpMyadmin, no es creado por el proceso de instalación, | ||
+ | |||
+ | En etc/ | ||
+ | |||
| | ||
Tomado de: https:// | Tomado de: https:// |
para_configurar_ispconfig.txt · Última modificación: 2022/11/02 17:58 por 127.0.0.1