The Perfect Server - OpenSUSE 11 - Page 6

13 Webalizer

To install webalizer, just run

yast2 -i webalizer

 

14 Synchronize the System Clock

If you want to have the system clock synchronized with an NTP server do the following:

yast2 -i xntp

Then add system startup links for ntp and start ntp:

chkconfig --add ntp
/etc/init.d/ntp start

 

15 Install some Perl Modules needed by SpamAssassin (comes with ISPConfig)

Run

yast2 -i perl-HTML-Parser perl-Net-DNS perl-Digest-SHA1

 

16 Disable AppArmor

AppArmor is a security extension of SUSE (similar to Fedora's SELinux) that should provide extended security. In my opinion you don't need it to configure a secure system, and it usually causes more problems than advantages (think of it after you have done a week of trouble-shooting because some service wasn't working as expected, and then you find out that everything was ok, only AppArmor was causing the problem). Therefore I disable it (this is a must if you want to install ISPConfig later on).

We can disable it like this:

/etc/init.d/boot.apparmor stop
chkconfig -d boot.apparmor

 

17 The End

The configuration of the server is now finished, and if you wish you can now install ISPConfig on it, following these instructions: http://www.ispconfig.org/manual_installation.htm

 

17.1 A Note On SuExec

If you want to run CGI scripts under suExec, you should specify /srv/www as the web root for websites created by ISPConfig as SUSE's suExec is compiled with /srv/www as Doc_Root. Run

/usr/sbin/suexec2 -V

and the output should look like this:

server1:~ # /usr/sbin/suexec2 -V
 -D AP_DOC_ROOT="/srv/www"
 -D AP_GID_MIN=96
 -D AP_HTTPD_USER="wwwrun"
 -D AP_LOG_EXEC="/var/log/apache2/suexec.log"
 -D AP_SAFE_PATH="/usr/local/bin:/usr/bin:/bin"
 -D AP_UID_MIN=96
 -D AP_USERDIR_SUFFIX="public_html"
server1:~ #

So if you want to use suExec with ISPconfig, don't change the default web root (which is /srv/www) if you use expert mode during the ISPConfig installation (in standard mode you can't change the web root anyway so you'll be able to use suExec in any case).

 

18 Links

Share this page:

5 Comment(s)

Add comment

Comments

From: dmgrant at: 2009-05-15 05:32:04

The correction Jeff submitted (libdb-devel) did not work for me.  I did notice no installation of "db-devel" on my system so Jeff's statement "db-devel will silently fail to download anything" seems correct.  What I have to offer on my system that sounds like it should fit the bill is called "db43-devel" (Files and Libraries for Berkeley DB Library).

 Just a make a note of it.  I could certainly be wrong.

From: Geoff P at: 2009-05-04 00:23:32

In Step 5: Install Some Software db-devel should be *libdb-devel* (Berkeley DB development tools). Found via Google search with results subsequently inserted into an RPM search.  db-devel will silently fail to download anything.

From: Anonymous at: 2009-11-30 02:14:18

I'm a nOOb so to run yast2 do the following:

1. type "su" (without quotes duh!)

2. type in your password

3. then type "yast2" (booyah!!!)

From: at: 2008-07-08 19:58:48

If you want this to take more time sure use 'yast -i' , but  I highly recommend using 'zypper in'.  So,

yast -i [package] launches the yast package management stuff and then installs the software (zypper in the background)

zypper in [package] just calls zypper and installs the package(s) and in 11.0 this is blazingly fast even with tons of repos (I have about 15)

From: dmgrant at: 2009-05-15 06:27:31

All references on this page to "mod_ruby-1.2.6." should be changed to "mod_ruby-1.3.0." since the older version fails to produce a makefile.

(on my system anyway)