Installing SquirrelMail on EnGarde Secure Linux HOWTO
Recommend Documents
Installing PHPMyAdmin on EnGarde Secure Linux HOWTO. Revision History.
Revision $Revision: 1.5 $ $Date: 2007/06/28 14:06:12 $ ...
Linux Hardware Compatibility HOWTO. Steven Pritchard. Southern Illinois Linux
Users Group / K&S Pritchard Enterprises, Inc. . 3.2.4.
Cirrus Logic (now Basis Communications) PD6710, PD6720, PD6722, ...
controller in the HP Omnibook 600 is also unsupported. .... forms permit ordinary
users to issue commands to suspend and resume cards, reset cards, ... BIOS
devices.
6. ..... Building a Secure RedHat Apache Server HOWTO. 6. Glossary. 2 .... The
signature's length is constant (no matter how large the file is) and depends on ...
Specific guidelines for C, C++, Java,. Perl, PHP, Python, Tcl, and Ada95 are
included. For a current version of the book, see http://www.dwheeler.com/secure−
...
When it pertains to a specific distribution (say RedHat or Debian), ...... But it is yet to become the official member of GNOME i18n distribution. In order to use them ...
This HOWTO provides information on how to manage your Android device using a ... 9. 4 Copying files. 10. 4.1 Copying via USB cable (from Linux box) .
assembly using free software, particularly under the Linux operating system. ..... The original GCC site is the GNU FTP
Hardware compatibilities issue. .... 2.1 Hardware that not compatible with Linux.
... This document explains installation of Linux on Sony VAIO computers. 1.
How to Setup Java Server Pages (JSP) Support. .... 2.2 IBM Java Developer Kit .
...... http://linuxdoc.org/HOWTO/Enterprise−Java−for−Linux−HOWTO.html.
Ce document décrit l'approche de Linux `a Tcl, un langage de script. C'est un ..... l
'utilisateur débutant trafiquer avec Tcl/Tk ; des tonnes d'autres données sont ...
Aug 1, 2001 ... Chapter 1. General. ..... Chapter 4. .... FAQ (IPv6-ready system check)......................
...............................................................................27. 4.7.1.
This is the Linux Assembly HOWTO, version 0.6f. ... Linux Operating System, mostly on IA-32 (i386) platform. Included ..
SquirrelMail with change_passwd and Vacation Quick Installation Guide. 1) Start
the IMAP server and httpd in Red Hat services and put squirrelmail-.
Your best bet is to find your distribution's most recent version. ... On many Linux distributions, you can find out whic
The Steps to Install OEL 4.7 on VMWare Workstation 7 is shown below. Screen
shot 1: This is the first and basic view of VMWare Workstation. Here we have 3 ...
For example, what works well in Fedora Core 6 may not work exactly the same
way in ... Remember that what I callа“Ruby”аin my book (Ruby on Rails For
Dummies) ... 3. Type the following command: yum install ruby. In response, the
yum ...
This walkthrough will guide the user with installing Thinkorswim's thinkdesktop
software for Ubuntu Linux (version 7.10 was the current version at the time of this.
Install SquirrelMail. Let's install the SquirrelMail package. To do this: # cd /usr/
ports/mail/squirrelmail. # make install. SquirrelMail needs to be configured to
work ...
Ce Mini-HOWTO de Linux décrit comment prévoir et organiser l'espace disque
de votre syst`eme Linux. ... 4.1 Un mod`ele `a suivre pour débutant ambitieux .
Security Quick−Start HOWTO for Red Hat Linux. Hal Burgiss [email protected] v.
1.2, 2002−07−21. Revision History. Revision v. 1.2. 2002−07−21. Revised by: hb.
Linux init ("ASCII art"). ... Linux architecture−specific initialization...............................
.............................................................1. 5. Linux architecture−independent ...
SuSE Server Setup. ... Redhat Server Setup. ... Debian Server Setup.......................
.....................................................................................................2. 9. Debian Client ...
Aug 7, 2002 ... The purpose of this document is to suggest a way to manage outbound .... By
using the HTB queue we can accomplish bandwidth shaping and ...
Installing SquirrelMail on EnGarde Secure Linux HOWTO
Installing SquirrelMail on EnGarde Secure Linux HOWTO. Revision History.
Revision $Revision: 1.9 $ $Date: 2007/11/27 15:27:23 $ ...
Installing SquirrelMail on EnGarde Secure Linux HOWTO
Installing SquirrelMail on EnGarde Secure Linux HOWTO Revision History Revision $Revision: 1.9 $ $Date: 2007/11/27 15:27:23 $
Table of Contents 1. Introduction.......................................................................................................................................................................1 2. SELinux Configuration.....................................................................................................................................................3 3. Setting up IMAP for SquirrelMail.....................................................................................................................................5 3.1. Configure xinetd......................................................................................................................................................5 3.2. Configure standard IMAP .......................................................................................................................................5 3.3. Restart xinetd..........................................................................................................................................................6 3.4. Allow IMAP access from 127.0.0.1 .........................................................................................................................6 4. Downloading and Installing the SquirrelMail Source Code..........................................................................................7 4.1. Download the source code .....................................................................................................................................7 4.2. Install SquirrelMail ..................................................................................................................................................7 5. Configuring SquirrelMail..................................................................................................................................................9 5.1. Change ownership of the files.................................................................................................................................9 5.2. Create config.php with proper permissions ............................................................................................................9 5.3. Edit config.php ........................................................................................................................................................9 5.4. Add Directory Index ..............................................................................................................................................10 5.5. Verify operation .....................................................................................................................................................10
iii
iv
Installing SquirrelMail on EnGarde Secure Linux HOWTO
List of Figures 5-1. Edit Virtural Host ...........................................................................................................................................................10
v
vi
Installing SquirrelMail on EnGarde Secure Linux HOWTO
Chapter 1. Introduction This document outlines how to install and configure SquirrelMail on EnGarde Secure Linux 3.0. It assumes that you have already performed the PHP preparatory steps described in the document PHP Installation for Applications on EnGarde Secure Linux 3.0 (http://www.engardelinux.org/doc/howtos/install-php-apps/install-php-apps/index.shtml). You must complete this before proceeding.
1
Chapter 1. Introduction
2
Installing SquirrelMail on EnGarde Secure Linux HOWTO
Chapter 2. SELinux Configuration Before you can use SquirrelMail on EnGarde Secure Linux (in Enforcing mode) you’ll need to toggle a boolean which allows the Apache webserver to communicate with the mail server ports. You may skip this section if you are not running your machine in Enforcing mode. The first thing you need to do is transition over to sysadm_r and see what the current setting is:
In the example above the httpd_webmail boolean is inactive (the default). Activate this boolean either in WebTool or use the setsebool command to enable this boolean:
When this boolean is active SquirrelMail will be able to properly function. Please note that this change will only survive until the next reboot. To make your change permanent (and persistent across reboots) open the file /etc/selinux/engarde/booleans in your favorite text editor, locate the httpd_webmail line, and change the 0 (inactive) to a 1 (active). SquirrelMail will now properly work on EnGarde Secure Linux in Enforcing mode.
3
Chapter 2. SELinux Configuration
4
Installing SquirrelMail on EnGarde Secure Linux HOWTO
Chapter 3. Setting up IMAP for SquirrelMail SquirrelMail by default will contact the IMAP server on the localhost.
3.1. Configure xinetd Make sure the xinetd daemon is configured to start at boot up. This is shown by the word "on" listed for init levels 3, 4, and 5 as shown below. # chkconfig --list xinetd xinetd 0:off 1:off 2:off 3:on
4:on
5:on
6:off
If all levels are shown as "off" then enable xinetd by running this command. # chkconfig --add xinetd
3.2. Configure standard IMAP Next, configure standard IMAP to listen on the local interface "127.0.0.1". First check if IMAP is currently running by # chkconfig --list | grep imap simap: on
The above shows that secure imap is running, this is NOT what we need, which is plain imap (non-SSL mode). To enable plain imap: # cd /etc/xinetd.d # cp -p simap imap
Edit the imap file using a text editor such as ’vi’ and perform the following changes. •
change "service simap" to "service imap"
•
change "interface = XXX.XXX.XXX.XXX" to "interface = 127.0.0.1"
•
If this lines exists "disable = yes" put a "#" at the start of the line
Now we want to configure the system so this starts at bootup. Run the following command. # chkconfig --add xinetd
Now verify that imap is in the "on" bootup state.
5
Chapter 3. Setting up IMAP for SquirrelMail
# chkconfig --list | grep imap simap: on imap: on
3.3. Restart xinetd Restart xinetd daemon and check that imap (port 143) is listening on the local interface IP 127.0.0.1. # /etc/init.d/xinetd restart # netstat --inet -lnp | grep 143 tcp 0 0 127.0.0.1:143 0.0.0.0:* LISTEN
31364/xinetd
This shows that imap (port 143) is listening on IP 127.0.0.1.
3.4. Allow IMAP access from 127.0.0.1 In the WebTool->System->Access Control add "127.0.0.1" for SIMAP access.
6
Installing SquirrelMail on EnGarde Secure Linux HOWTO
Chapter 4. Downloading and Installing the SquirrelMail Source Code All subsequent steps must be performed as the "root" user on the server. SSH into the server as "root". You should have either the password or the passphrase from section II to do this
4.1. Download the source code As of this writing the latest stable version of SquirrelMail is 1.4.5. Download the source tarball squirrelmail-1.4.5.tar.gz (it can be found at http://sourceforge.net) to the temporary directory /var/tmp. # cd /var/tmp # ls -l squirrelmail-1.4.5.tar.gz -rw-r--r-- 1 root root 591226 2005\u201312\u201308 11:53 squirrelmail-1.4.5.tar.gz
4.2. Install SquirrelMail Now unpack this tarball and move the files to the proper directory. # cd /home/httpd/SSLSERVER-443/html # tar zxvf /var/tmp/squirrelmail-1.4.5.tar.gz # mv squirrelmail-1.4.5 webmail
The code is now installed.
7
Chapter 4. Downloading and Installing the SquirrelMail Source Code
8
Installing SquirrelMail on EnGarde Secure Linux HOWTO
Chapter 5. Configuring SquirrelMail Now that SquirrelMail is installed we can configure it.
5.1. Change ownership of the files When defining a web site in the WebTool you are required to enter a user as the "webmaster" and assign a "group" to the web site. Those identities are needed for the following. When running the following commands replace WEBMASTER with the user that has been defined as the "webmaster" and replace GROUP with the group that was use. # chown -R WEBMASTER.GROUP webmail # cd webmail # chgrp -R webd config data
5.2. Create config.php with proper permissions # cd config # cp -p config_default.php config.php
5.3. Edit config.php There are many options that can be modified in this file. These are the suggested bare minimum variables to change. •
Change this to your organization’s name. $org_name = ’YOUR_ORGANIZATION’;
•
Change this to the title you would like shown on the SquirrelMail web page. $org_title = ’YOUR_TITLE $version’;
•
Change this to the mail domain that is being served by SquirrelMail. $domain = ’YOUR_MAIL_DOMAIN.com’;
•
Define your SMTP server. This is the name of the server running the Postfix MTA for your mail domain. If Postfix is running on the same server as SquirrelMail then this would be ’localhost’. If it is another server then enter ’SERVERNAME.com’. $smtpServerAddress = ’localhost’;
•
Define your IMAP server. We always have SquirrelMail running on the same server as IMAP so this will always be ’localhost’.
9
Chapter 5. Configuring SquirrelMail
$imapServerAddress = ’localhost’; •
Define the IMAP server type. The IMAP package in EnGarde Secure Community 3.0 is ’Washington University’ so use ’wu’ here. $imap_server_type = ’wu’;
•
The only PHP configuration that will be mentioned here is the maximum allowable file size to upload. This in defined in /etc/php.ini with the variable ’upload_max_filesize’ and the default is 2M. If you need to
5.4. Add Directory Index The next step is to configure the web server to use the index.php file for indexes. To do this, log into WebTool, click the System menu, choose World Wide Web Management, then select Edit Virtual Hosts from the Module menu. Select your virtual host and you will be presented with a screen like the one in Figure 5-1. Figure 5-1. Edit Virtural Host
As you can see we added index.php to the Directory Index field. After adding index.php click the Save This Virtual Host button to commit your changes.
5.5. Verify operation Now access SquirrelMail by going to the URL https://SERVERNAME/webmail/ and you should be presented with a SquirrelMail login page where a user with a local IMAP mail account can login and access mail.
10
Installing SquirrelMail on EnGarde Secure Linux HOWTO
