The Perfect Server - Fedora 14 x86_64 [ISPConfig 2] - Page 3
4 Adjust /etc/hosts
Next we edit /etc/hosts. Make it look like this:
It is important that you add a line for server1.example.com and remove server1.example.com and server1 from the 127.0.0.1 line.
5 Disable SELinux
SELinux is a security extension of Fedora that should provide extended security. In my opinion you don't need it to configure a secure system, and it usually causes more problems than advantages (think of it after you have done a week of trouble-shooting because some service wasn't working as expected, and then you find out that everything was ok, only SELinux was causing the problem). Therefore I disable it (this is a must if you want to install ISPConfig later on).
Edit /etc/selinux/config and set SELINUX=disabled:
Afterwards we must reboot the system:
6 Install Some Software
Next we update our existing packages on the system:
Now we install some software packages that are needed later on:
yum install fetchmail wget bzip2 unzip zip nmap openssl lynx fileutils ncftp gcc gcc-c++
7 Journaled Quota
(If you have chosen a different partitioning scheme than I did, you must adjust this chapter so that quota applies to the partitions where you need it.)
To install quota, we run this command:
yum install quota
Edit /etc/fstab and add ,usrjquota=aquota.user,grpjquota=aquota.group,jqfmt=vfsv0 to the / partition (/dev/mapper/vg_server1-lv_root):
touch /aquota.user /aquota.group
to enable quota.
8 Install A Chrooted DNS Server (BIND9)
To install a chrooted BIND9, we do this:
yum install bind-chroot
Next, we change a few permissions:
chmod 755 /var/named/
Then we open /etc/sysconfig/named and make sure that it has the following line to tell BIND that it's running chrooted in /var/named/chroot:
Next open /etc/rsyslog.conf...
... and add the line $AddUnixListenSocket /var/named/chroot/dev/log to it:
Then we create the system startup links for BIND:
chkconfig --levels 235 named on
We don't start BIND now because it will fail because of a missing /var/named/chroot/etc/named.conf. This will be created later on by ISPConfig (if you use ISPConfig's DNS Manager, that is).