The Perfect Server - Ubuntu 14.04 (Apache2, PHP, MySQL, PureFTPD, BIND, Dovecot, ISPConfig 3)

Version 1.0
Author: Falko Timme, updated by Srijan Kishore 
Last edited 22/Apr/2014

This tutorial shows how to prepare an Ubuntu 14.04 (Trusty Tahr) server (with Apache2, BIND, Dovecot) for the installation of ISPConfig 3, and how to install ISPConfig 3. ISPConfig 3 is a webhosting control panel that allows you to configure the following services through a web browser: Apache or nginx web server, Postfix mail server, Courier or Dovecot IMAP/POP3 server, MySQL, BIND or MyDNS nameserver, PureFTPd, SpamAssassin, ClamAV, and many more. This setup covers Apache (instead of nginx), BIND (instead of MyDNS), and Dovecot (instead of Courier).

I do not issue any guarantee that this will work for you!

 

1. Requirements

To install such a system you will need the following:


  • the Ubuntu 14.04 server CD, available here: http://releases.ubuntu.com/releases/14.04/ubuntu-14.04-server-i386.iso (i386) or http://releases.ubuntu.com/releases/14.04/ubuntu-14.04-server-amd64.iso(x86_64)
  • a fast Internet connection.

 

2. Preliminary Note

In this tutorial I use the hostname server1.example.com with the IP address 192.168.2.251 and the gateway 192.1682.249. These settings might differ for you, so you have to replace them where appropriate.

3. The Base System

Insert your Ubuntu install CD into your system and boot from it. Select your language:

Then select Install Ubuntu Server:

Choose your language again (?):

Then select your location:



Choose a keyboard layout (you will be asked to press a few keys, and the installer will try to detect your keyboard layout based on the keys you pressed) In my case I prefer No & keyboard layout as English US:





The installer checks the installation CD, your hardware, and configures the network with DHCP if there is a DHCP server in the network:



Enter the hostname. In this example, my system is called server1.example.com, so I enter server1:



Create a user, for example the user administrator with the user name administrator (don't use the user name admin as it is a reserved name on Ubuntu 14.04):



Share this page:

87 Comment(s)

Add comment

Comments

From: at: 2014-04-29 08:01:37

The gateway address is missing a '.'

From: at: 2014-04-25 08:07:39

Thanks for your numerous fine tutorials

I use the proposed 64bit ISO

There is no file:

root@server1:~# /etc/init.d/hostname restart
bash: /etc/init.d/hostname: Datei oder Verzeichnis nicht gefunden


From: at: 2014-04-27 11:41:42

the same error here

From: MadTrappeer at: 2014-05-18 23:47:37

I have been building LAMP servers for a few years now. I leave the network cable unplugged and allow DHCP to fail. When offered I then configure the network manually.This just plain saves time. Just plug it in after that so that it can pick up the time zone and do the update etc.

From: Anonymous at: 2014-04-26 15:01:23


 

What can I do to fix?

 root@1:/etc/init.d# /etc/init.d/hostname restart

bash: /etc/init.d/hostname: No such file or directory

 


From: at: 2014-04-28 08:50:04

Please use this command instead: 

 service hostname restart

 The Tutorial has been updated as well.

From: at: 2014-04-29 07:26:24

My /etc/apt/sources.list files looks like this-

 
## modifications made here will not survive a re-bundle.
## a.) add 'apt_preserve_sources_list: true' to /etc/cloud/cloud.cfg
## b.) add sources in /etc/apt/sources.list.d
#
# See http://help.ubuntu.com/community/UpgradeNotes for how to upgrade to
deb http://us-west-2.ec2.archive.ubuntu.com/ubuntu/ trusty main

## distribution.
deb-src http://us-west-2.ec2.archive.ubuntu.com/ubuntu/ trusty-updates main
## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu
## review or updates from the Ubuntu security team.
deb-src http://us-west-2.ec2.archive.ubuntu.com/ubuntu/ trusty universe
deb-src http://us-west-2.ec2.archive.ubuntu.com/ubuntu/ trusty-updates universe
## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu 
## your rights to use the software. Also, please note that software in 
## security team.
# deb-src http://us-west-2.ec2.archive.ubuntu.com/ubuntu/ trusty multiverse
# deb-src http://us-west-2.ec2.archive.ubuntu.com/ubuntu/ trusty-updates multiverse
## Uncomment the following two lines to add software from the 'backports'
## N.B. software from this repository may not have been tested as
## newer versions of some applications which may provide useful features.
## or updates from the Ubuntu security team.
# deb-src http://us-west-2.ec2.archive.ubuntu.com/ubuntu/ trusty-backports main restricted universe multiverse
## Uncomment the following two lines to add software from Canonical's
## This software is not part of Ubuntu, but is offered by Canonical and the
# deb http://archive.canonical.com/ubuntu trusty partner

deb-src http://security.ubuntu.com/ubuntu trusty-security main
deb-src http://security.ubuntu.com/ubuntu trusty-security universe


 
do i have to downgrade to saucy ?? 
 

From: at: 2014-04-29 08:08:49

If this article is about Ubuntu 14.04 Trusty, why you are using Saucy respositories?

From: at: 2014-04-29 09:47:00

This was a mistake in the guide. I fixed that.

From: at: 2014-04-29 14:51:03

Perfect thank you!

I was going mad to understand why that repository ;)

From: at: 2014-05-04 11:27:29

fyi.

From: Bigdickau at: 2014-05-11 00:44:27


i have been following this tut with interest but when it comes to the first reboon on page the system crashes. 

 getting 110347587] EXT4-fs (cciss!c0d0p1): mounted filesystem without jurnal. 0pts"(null)

the system freezers and i have to do a hard reset 

this is the last line

Any ideas

From: Patrick at: 2014-05-16 07:28:13

Within the Configure the Network, should the network not read 192.168.1.0 rather than 192.168.1.252? 
 
auto eth0
iface eth0 inet static
        address 192.168.1.252
        netmask 255.255.255.0
        network 192.168.1.252   or 192.168.1.0 ???
        broadcast 192.168.1.255
        gateway 192.168.1.254

From: at: 2014-05-16 23:35:06

Your network would be different. It depends on what your gateway is, you can find that on your router box if it is providing DHCP services, and typically it should.

 mine looks like this:

 # This file describes the network interfaces available on your system

# and how to activate them. For more information, see interfaces(5).


# The loopback network interface

auto lo

iface lo inet loopback


# The primary network interface

auto eth0

iface eth0 inet static

        address 192.168.0.6

        netmask 255.255.255.0

        network 192.168.0.6

        broadcast 192.168.0.255

        gateway 192.168.0.1

        dns-nameservers 209.18.47.61 209.18.47.62

As you can see I am using my ISP nameservers, the tutorial is using local nameservers as my guess is the lesson is based on local access only. My local IP is 192.168.0.6, however I wasn't sure about the broadcast but based on the tutorial it looks like a reserved IP address .255 so I plopped in 0.255. Didn't seem to cause any problems so far. In order to make your server available on the internet you have to open up ports on your router box such as 80 for web access. 22 for ssh access, but I'd refrain until you lock down the machine before opening up port 22, and that can be changed to a different port if you want to make it harder to find. hosts.allow file you can button up who gets to access, but I wouldn't mess with that until you finish the tutorial as I think ISPConfig web interface will get you all set up for that anyway.
 
Of course I'd stand corrected if this is inaccurate. 

From: Renan Altendorf at: 2014-06-23 13:55:22

Fixing multiverse source.list

<pre># See http://help.ubuntu.com/community/UpgradeNotes for how to upgrade to
# newer versions of the distribution.
deb http://archive.ubuntu.com/ubuntu/ trusty main restricted
# deb-src http://archive.ubuntu.com/ubuntu/ trusty main restricted

## Major bug fix updates produced after the final release of the
## distribution.
deb http://archive.ubuntu.com/ubuntu/ trusty-updates main restricted
# deb-src http://archive.ubuntu.com/ubuntu/ trusty-updates main restricted

## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu
## team. Also, please note that software in universe WILL NOT receive any
## review or updates from the Ubuntu security team.
deb http://archive.ubuntu.com/ubuntu/ trusty universe
# deb-src http://archive.ubuntu.com/ubuntu/ trusty universe
deb http://archive.ubuntu.com/ubuntu/ trusty-updates universe
# deb-src http://archive.ubuntu.com/ubuntu/ trusty-updates universe

## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu 
## team, and may not be under a free licence. Please satisfy yourself as to 
## your rights to use the software. Also, please note that software in 
## multiverse WILL NOT receive any review or updates from the Ubuntu
## security team.
deb http://archive.ubuntu.com/ubuntu/ trusty multiverse
# deb-src http://archive.ubuntu.com/ubuntu/ trusty multiverse
deb http://archive.ubuntu.com/ubuntu/ trusty-updates multiverse
# deb-src http://archive.ubuntu.com/ubuntu/ trusty-updates multiverse

## N.B. software from this repository may not have been tested as
## extensively as that contained in the main release, although it includes
## newer versions of some applications which may provide useful features.
## Also, please note that software in backports WILL NOT receive any review
## or updates from the Ubuntu security team.
deb http://archive.ubuntu.com/ubuntu/ trusty-backports main restricted universe multiverse
# deb-src http://archive.ubuntu.com/ubuntu/ trusty-backports main restricted universe multiverse

deb http://security.ubuntu.com/ubuntu trusty-security main restricted
# deb-src http://security.ubuntu.com/ubuntu trusty-security main restricted
deb http://security.ubuntu.com/ubuntu trusty-security universe
# deb-src http://security.ubuntu.com/ubuntu trusty-security universe
deb http://security.ubuntu.com/ubuntu trusty-security multiverse
# deb-src http://security.ubuntu.com/ubuntu trusty-security multiverse

## Uncomment the following two lines to add software from Canonical's
## 'partner' repository.
## This software is not part of Ubuntu, but is offered by Canonical and the
## respective vendors as a service to Ubuntu users.
deb http://archive.canonical.com/ubuntu trusty partner
# deb-src http://archive.canonical.com/ubuntu trusty partner

## This software is not part of Ubuntu, but is offered by third-party
## developers who want to ship their latest software.
deb http://extras.ubuntu.com/ubuntu trusty main
# deb-src http://extras.ubuntu.com/ubuntu trusty main</pre> 

From: Anonymous at: 2014-07-23 11:42:05

The command # service networking restart # does not work on Ubuntu 14.04:

stop: Job failed while stopping
start: Job is already running: networking

See:

https://bugs.launchpad.net/ubuntu/+source/ifupdown/+bug/1301015 and http://askubuntu.com/questions/441619/how-to-successfully-restart-a-network-without-reboot-over-ssh

I used # ifdown eth0 && ifup eth0 # but don`t know if that`s the correct syntax. In fact noone knows that for sure.

From: at: 2014-07-24 03:15:11

Thanks for another great guide.

I notice there is no coverage of firewall settings in this guide, unlike the 10.04 LTS I followed.  I think this needs to be covered because by default, UFW on 14.04 LTS is 'inactive' and requires the command 'ufw enable'.

From: admin at: 2014-07-24 07:39:53

No, the guide is complete as it is. ISPConfig 3 comes with ist own Firewall and this gets configured by the ispconfig installer.

From: at: 2014-12-08 20:33:36

Does one really need to add these repos? It looks like universe and multiverse repos are already enabled in my installation, just not these particular ones. The CD-ROM is also already commented out.

 

 

From: at: 2014-04-25 10:34:14

When restarting postfix I get a lot of errors:

root@myserver:/home/admin# /etc/init.d/postfix restart

* Stopping Postfix Mail Transport Agent postfix /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions [ OK ] * Starting Postfix Mail Transport Agent postfix postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_client_restr ictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions /usr/sbin/postconf: warning: /etc/postfix/master.cf: undefined parameter: mua_cl ient_restrictions [ OK ]

root@myserver:/home/admin#

From: admin at: 2014-04-25 19:10:56

Please check your master.cf file again and compare it with the Version from the tutorial. You must have removed # in front of too many lines in the smtps and Submission sections when you get that error. remove the # just in front of the lines as shown in the tutorial.

From: Skrydal at: 2014-10-13 20:47:00

Hi, I would like to say thank you for that tutorial. I have the same problem when I try to restart "service postfix restart"

[..]

(98)address already in use make_sock nginx

 [...]

I checked the  /etc/postfix/master.cf, and is exacly like you are showing in that tutorial.

Thanks For Help

Maciek

 

 

From: Zuyan Chang at: 2014-04-26 17:22:58

In step 12 have Dovecot SSL setting ..
SSL option & hostname Setting .
But in Document miss it.

 

 

From: at: 2014-05-01 02:24:19

I am facing that too and confused what will be inputs ? localhost ? and mail ? localhost.domain.com or server1.domain.com ???

From: yashx1 at: 2014-04-29 07:47:04

While installing mod_fastcgi i receive this error:-

/home/ubuntu# apt-get install libapache2-mod-fastcgi php5-fpm
Reading package lists... Done
Building dependency tree       
Reading state information... Done
Package libapache2-mod-fastcgi is not available, but is referred to by another package.
This may mean that the package is missing, has been obsoleted, or
is only available from another source

E: Package 'libapache2-mod-fastcgi' has no installation candidate

From: at: 2014-04-29 09:49:28

Please check your /etc/apt/sources.list if the multiverse repository is enabled.

From: Anonymous at: 2014-05-01 11:11:28

Whenever I use the 'service' command, it says.....  

'service unrecognized'

Just wondering why ?

And why cant we still use /etc/init.d etc etc ?

 

From: admin at: 2014-05-01 16:49:42

The classic init System with scripts in /etc/init.d/ has been replaced in Ubuntu 14.04 with upstart. So the few scripts that still exist in /etc/init.d/ are just wrapper for the upstart service .. commands and not all services have wrapper scripts in /etc/init.d/ anymore and some others are faulty. If the command "service" is not known on your server, then you are either not logged in as root user or you do not use Ubuntu 14.04.

I installed a Server xesterday with this guide, all commands worked out of the box, I could do a simple copy&paste from the guide to my ssh terminal for all commands.

From: Anonymous at: 2014-05-02 07:09:14

Thanks for your reply but I have solved it now .....

For 'Service restart'

 it needs to be....

'Service full-restart'

Now I dont get any problems.

Many thanks.

From: Anonymous at: 2014-05-09 10:05:30

If you are running PHP on cli you may get errors like:

Cannot adopt OID in NET-SNMP-AGENT-MIB: netSnmpAgentMIB ::= { netSnmpModuleIDs 2 }
Cannot adopt OID in LM-SENSORS-MIB: lmFanSensorsValue ::= { lmFanSensorsEntry 3 }
Cannot adopt OID in LM-SENSORS-MIB: lmFanSensorsDevice ::= { lmFanSensorsEntry 2 }
Cannot adopt OID in LM-SENSORS-MIB: lmFanSensorsIndex ::= { lmFanSensorsEntry 1 }
Cannot adopt OID in LM-SENSORS-MIB: lmTempSensorsValue ::= { lmTempSensorsEntry 3 }
Cannot adopt OID in LM-SENSORS-MIB: lmTempSensorsDevice ::= { lmTempSensorsEntry 2}

You need to install "snmp-mibs-downloader".

From: Anonymous at: 2014-05-13 17:39:06

Thank you for this answer it worked great.

No more errors in the cron log & PHP CLI working 100%

 

Many thanks.

From: at: 2014-05-16 22:56:41


Let me say, fandabadozy instructions. Although I am having a little difficulty getting ISPConfig and Apache to run. So I started again. I got as far as step 11 this time, and ran into an issue that none of the packages could be found when starting step 12.

My situation is a little different... dare a say "gasp" using a Mac and VirtualBox by Solaris to run this tutorial... got it up to and including squirrel mail with no issues even got an email from mailman last night. Issue I had with Apache not starting was something to do with Suexecispconfig in the default.conf file for apache... didn't seem to recognize the user ispconfig. I am guessing I missed something.

Starting from scratch...  

 

 

From: admin at: 2014-05-19 10:22:46

Please check your /etc/apt/sources.list. Seems as if you did not enable all repositories (universe + multiverse).

From: Alan at: 2014-07-15 02:38:15

Great tutorial.  however, I updated the sources list and ran apt-get update multiple times but it consistently can't find getmail4.  Am I the only one still running into this problem?

From: at: 2014-05-17 00:11:18

I'm going to press on without it... not sure how important getmail4 is, but it isn't found with apt-get install

 apt-get install getmail4

Reading package lists... Done

Building dependency tree       

Reading state information... Done

E: Unable to locate package getmail4

From: at: 2014-05-17 00:50:45

I had to reconfigure the update process, by ensuring that I had latest updates using apt-get update, which I did prior per the tutorial but seems some stuff was skipped. Now it seems to be installing these apps as intended. Doing them one at a time to isolate any issues.

 Pain, but necessary.

From: Nico at: 2014-05-31 23:19:50

Installing xcache (14.1) on ubuntu 14.04 digital ocean you might have an issue migrating a drupal site.  I had a plain site that worked migrating site with views cck and others would get the wsod after several hours disabling views along with search_api_views and views_ui it would show but not entire site, after much digging.. uninstall php5-xcache fixed it and enabled them models again.

 i did the,

"sudo apt-get remove --auto-remove php5-xcache" with a "sudo apt-get purge --auto-remove php5-xcache"

 not sure how big of a hit I will get for xcache being removed but it works and I am happy, just migrated from centos 5.x to ubuntu 14.04 because some email issues and i now have email/smtp and everything working, also migrated from webuzo to ispconfig3

 

From: at: 2014-06-27 11:28:44

after upgrade from 10.04 to 14.04 and i get error in Apache line

AH00548: NameVirtualHost has no effect and will be removed in the next release /etc/apache2/ports.conf:8
 

From: Anonymous at: 2014-12-15 00:43:08




I had and issue that when going to the mailman admin pages, all of the linked images were missing.

 I had to:

 


ln -s /etc/mailman/apache.conf ../conf-enabled/mailman.conf

 service apache2 restart 


 

From: at: 2014-04-25 10:53:29

root@myserver:/tmp# /etc/init.d/fail2ban restart

* Restarting authentication failure monitor fail2ban ERROR Found no accessible config files for 'filter.d/sasl' under /etc/fail2ban ERROR Unable to read the filter ERROR Errors in jail 'sasl'. Skipping... [fail]

root@myserver:/tmp#

From: at: 2014-04-28 08:51:48

The missing sasl fail2ban config file has been added to the guide.

From: yashx1 at: 2014-04-29 08:01:37

while restarting fail2ban, i am getting this error -


 

ERROR  NOK: ("No 'host' group in '(?i): warning: [-._\\w]+\\[\\]: SASL (?:LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed(: [ A-Za-z0-9+/]*={0,2})?\\s*$'",)          [ OK ]


From: at: 2014-04-29 09:50:46

Fail2ban starts fine with the above config file on my test server. Please check that you do not have any typos in the sasl file.

From: Dom at: 2014-04-29 21:03:50

I get the same errror :

 

 * Restarting authentication failure monitor fail2ban                                                                                                                   ERROR  NOK: ("No 'host' group in '^\\s*(<[^.]+\\.[^.]+>)?\\s*(?:\\S+ )?(?:kernel: \\[\\d+\\.\\d+\\] )?(?:@vserver_\\S+ )?(?:(?:\\[\\d+\\])?:\\s+[\\[\\(]?postfix/smtpd(?:\\(\\S+\\))?[\\]\\)]?:?|[\\[\\(]?postfix/smtpd(?:\\(\\S+\\))?[\\]\\)]?:?(?:\\[\\d+\\])?:?)?\\s(?:\\[ID \\d+ \\S+\\])?\\s*warning: [-._\\w]+\\[\\]: SASL (?:LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed(: [ A-Za-z0-9+/]*={0,2})?\\s*$'",)

From: at: 2014-04-29 17:29:37

Added the sasl.conf file and restarted fail2ban but get error: * Restarting authentication failure monitor fail2ban ERROR NOK: ("No 'host' group in '^\\s*(<[^.]+\\.[^.]+>)?\\s*(?:\\S+ )?(?:kernel : \\[\\d+\\.\\d+\\] )?(?:@vserver_\\S+ )?(?:(?:\\[\\d+\\])?:\\s+[\\[\\(]?postfix /smtpd(?:\\(\\S+\\))?[\\]\\)]?:?|[\\[\\(]?postfix/smtpd(?:\\(\\S+\\))?[\\]\\)]?: ?(?:\\[\\d+\\])?:?)?\\s(?:\\[ID \\d+ \\S+\\])?\\s*warning: [-._\\w]+\\[\\]: SASL (?:LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed(: [ A-Za-z0-9+/]*={0, 2})?\\s*$'",)

From: at: 2014-04-30 15:46:20

I've rewritten the fail2ban section of the guide now and published an update. Please change the jail.local conf to the new version and then execute the "echo" command at the end of the fail2ban section if you followed the first version of the tutorial.

From: Dom at: 2014-04-30 19:41:24

That seems to have sorted it - thanks :)

 

Dom

From: James at: 2014-05-08 12:37:35

exact code transcription of your code, what am I missing? It seems like the files are not connected, but I'm still learning.. 
 
 
service fail2ban restart
 * Restarting authentication failure monitor fail2ban                                                                                                                                                                             WARNING 'logpath' not defined in 'dovecot-pop3imap'. Using default one: '/var/log/messages'
ERROR  No file(s) found for glob /var/log/messages
ERROR  Failed during configuration: Have not found any log file for dovecot-pop3imap jail

From: admin at: 2014-05-08 19:40:21

I've setup a server with the code from the guide, exact copy&paste of the guide and it worked without an arror. So you must have a typo somehere in your transcription. Better copy&paste the comands and filecontents instead of typing them to ensure that you get a error free Setup. I guess the issue is in the logpath of the jail,local files as the Errors says that it uses the Default '/var/log/messages' instaed of the one from the file in the tutorial (/var/log/mail.log).

And a cite from the yellow box above the omment section: "Please do not use the comment function to ask for help! If you need help, please use our Forum." So please use the Forum if you Need help with yout install!

From: nik at: 2014-05-24 01:27:09

 Using VPS at DigitalOcean

Kernel  - Ubuntu 14.04 x64 vmlinuz -3.13.0-24 generic

any ideas  why Quota format not supported in kernel.?

 

 root@srvr01:~# quotacheck -avugm
quotacheck: Scanning /dev/disk/by-label/DOROOT [/] done
quotacheck: Cannot stat old user quota file //quota.user: No such file or directory. Usage will not be subtracted.
quotacheck: Cannot stat old group quota file //quota.group: No such file or directory. Usage will not be subtracted.
quotacheck: Cannot stat old user quota file //quota.user: No such file or directory. Usage will not be subtracted.
quotacheck: Cannot stat old group quota file //quota.group: No such file or directory. Usage will not be subtracted.
quotacheck: Checked 10616 directories and 80413 files
quotacheck: Old file not found.
quotacheck: Old file not found.
root@srvr01:~# quotaon -avug
quotaon: using //quota.group on /dev/disk/by-label/DOROOT [/]: No such process
quotaon: Quota format not supported in kernel.
quotaon: using //quota.user on /dev/disk/by-label/DOROOT [/]: No such process
quotaon: Quota format not supported in kernel.

 

From: Neil at: 2014-10-02 20:06:08

I also got the same error. Did this ever get resolved for you. Thanks

From: Raheel at: 2014-06-25 13:56:39

Hi guys, I would like to know 

16. Install PureFTPd And Quota

is necessary because I'm setting up this server on windows server and everything is virtual even IP. If I restarted my server then IP will also change on next reboot.

How can I get required information  for vi /etc/fstab? Please guide me.

Thanks

From: Brainski at: 2014-09-12 15:16:32

I was using this tutorial for a machine on Amazon AWS. Quota was not working:

"Quota format not supported in kernel."

Solution:

apt-get install linux-image-extra-virtual

reboot system

After that run modprobe quota_v2 and modprobe quota_v1 in order to get ready to run quotas. Also remember to put the modules on /etc/modules.

 

From: Curtis at: 2014-12-03 19:15:56

Jailkit-2.17 when unpacked has no debian binary file.  you have to run configure, make, make install which breaks your script because apt doesn't show jailkit as being installed.

 

From: at: 2014-12-03 19:27:49

Off course not, as you compile jailkit with the command 

./debian/rules binary

and this command created the .deb file. Just follow the tutorial step by step and dont leave out any commands, then you get a working Server like thousands of users before.

 

From: at: 2014-04-25 11:14:37

root@myserver:/# ./ubuntu_package_check.sh
You missed to install these packages
php-auth
php-pear
You need to install these packages. To install these packages you need to run the command apt-get install package_name
 You can cross check the particular installation as follows:
dpkg -l | grep package_name | cut -d ' ' -f3

If it is showing the package_name then you can ignore the package.
root@myserver:/#

Packages php-auth and php-pear alleady installed.

From: at: 2014-04-25 11:22:42

root@myserver:# /etc/init.d/mysql restart
 * Stopping MySQL database server mysqld                                 [ OK ]
 * Starting MySQL database server mysqld                                 [fail]

 


 

From: admin at: 2014-04-25 19:15:04

Check the mysql errr log file:

tail -n 100/var/log/mysql/error.log

maybe you made a mistake while you edited the my.cnf file.

From: Zuyan at: 2014-04-26 18:42:22


Try to do command again :

echo server1.example.com > /etc/hostname

 I have same problem.

From: Thomas at: 2014-04-29 21:20:50


you write:

 If you'd like to define a vhost like webmail.example.com where your users can access SquirrelMail, you'd have to add the following vhost configuration to /etc/apache2/conf.d/squirrelmail.conf:

vi /etc/apache2/conf.d/squirrelmail.conf

 The correct path is: /etc/apache2/conf-available/squirrelmail.conf

bye bye ;)

From: Paulo at: 2014-05-07 13:47:06

I am amazed on how you could explain step by step this issue. I've followed each one of them and everything worked well in the end.

 Thank you very much!!

From: at: 2014-05-17 15:27:52

Success: https://server.magiccamera.info:8080

Hosted on a VirtualBox on a mac mini under my telly. Time to Clone it in current state :D

 Thanks for the excellent tutorial. Trying to get the manual but link seems to be broken or the pdf is damaged.

 Anyway, using the ISPConfig beats using MAC OS X Server for Mavericks hands down.

From: Greg P at: 2014-05-18 19:23:32

 Have used Falkos other guides in the past and they always work. Wanted to say big thank you once again. Appreciate the hard work.

From: Fantom at: 2014-05-21 06:46:14

Alias /webmail /usr/share/squirrelmail. If you add an alias Alias /mail /usr/share/squirrelmail, the panel disappears Possibility to create e-mail domains ...Thanks for a great manual!

From: Raheel at: 2014-06-25 18:22:51

Hi,

I followed your complete tutorial without any error But when I'm accessing ispconfig as http://domain.com:8080 or https://domain.com:8080 then nothing works.

Can you please guide me how can I fix it? I'm stuck not to trace it. I follow your steps under Windows Azure Virtual Machine.


# netstat -tap
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
tcp        0      0 *:imaps                 *:*                     LISTEN      2535/dovecot
tcp        0      0 100.92.200.54:16001     *:*                     LISTEN      903/python
tcp        0      0 *:pop3s                 *:*                     LISTEN      2535/dovecot
tcp        0      0 localhost:10024         *:*                     LISTEN      1641/amavisd-new (m
tcp        0      0 localhost:10025         *:*                     LISTEN      1513/master
tcp        0      0 *:mysql                 *:*                     LISTEN      1060/mysqld
tcp        0      0 *:submission            *:*                     LISTEN      1513/master
tcp        0      0 localhost:11211         *:*                     LISTEN      42954/memcached
tcp        0      0 *:pop3                  *:*                     LISTEN      2535/dovecot
tcp        0      0 *:imap2                 *:*                     LISTEN      2535/dovecot
tcp        0      0 *:urd                   *:*                     LISTEN      1513/master
tcp        0      0 100.92.200.54:domain    *:*                     LISTEN      2642/named
tcp        0      0 localhost:domain        *:*                     LISTEN      2642/named
tcp        0      0 *:ftp                   *:*                     LISTEN      2611/pure-ftpd (SER
tcp        0      0 *:ssh                   *:*                     LISTEN      1605/sshd
tcp        0      0 localhost:953           *:*                     LISTEN      2642/named
tcp        0      0 *:smtp                  *:*                     LISTEN      1513/master
tcp       53      0 localhost:58507         localhost:10025         CLOSE_WAIT  2228/amavisd-new (c
tcp        0      0 localhost:mysql         localhost:37449         ESTABLISHED 1060/mysqld
tcp        0      0 100.92.200.54:49358     100.92.200.20:http      TIME_WAIT   -
tcp        0      0 localhost:37449         localhost:mysql         ESTABLISHED 2228/amavisd-new (c
tcp        0      0 100.92.200.54:49357     100.92.200.20:http      TIME_WAIT   -
tcp        0    464 100.92.200.54:ssh       5.108.98.150:26603      ESTABLISHED 47897/sshd: azureus
tcp6       0      0 [::]:imaps              [::]:*                  LISTEN      2535/dovecot
tcp6       0      0 [::]:pop3s              [::]:*                  LISTEN      2535/dovecot
tcp6       0      0 [::]:submission         [::]:*                  LISTEN      1513/master
tcp6       0      0 [::]:pop3               [::]:*                  LISTEN      2535/dovecot
tcp6       0      0 [::]:imap2              [::]:*                  LISTEN      2535/dovecot
tcp6       0      0 [::]:http-alt           [::]:*                  LISTEN      44641/apache2
tcp6       0      0 [::]:http               [::]:*                  LISTEN      44641/apache2
tcp6       0      0 [::]:tproxy             [::]:*                  LISTEN      44641/apache2
tcp6       0      0 [::]:urd                [::]:*                  LISTEN      1513/master
tcp6       0      0 [::]:domain             [::]:*                  LISTEN      2642/named
tcp6       0      0 [::]:ftp                [::]:*                  LISTEN      2611/pure-ftpd (SER
tcp6       0      0 [::]:ssh                [::]:*                  LISTEN      1605/sshd
tcp6       0      0 ip6-localhost:953       [::]:*                  LISTEN      2642/named
tcp6       0      0 [::]:smtp               [::]:*                  LISTEN      1513/master
tcp6       0      0 [::]:https              [::]:*                  LISTEN      44641/apache2
tcp6       0      0 100.92.200.54:http      162.253.66.77:52663     TIME_WAIT   -
 
Thanks

From: admin at: 2014-06-25 18:33:34

Please do not use the comment function to ask for help! If you need help, please use our Forum.

From: showe1966 at: 2014-08-21 11:39:17

Hi.

According to the cross-check:-

 You missed to install these packages
php-auth
php-pear
postfix-mysql
You need to install these packages. To install these packages you need to run the command apt-get install package_name
 You can cross check the particular installation as follows:
dpkg -l | grep package_name | cut -d ' ' -f3

 

The package postfix-mysql i could install.

So that issue was fixed.

However, the packages php-auth and php-pear result as already installed when i do an apt-get install on them.

But cross-check script shows they are missing.

Any ideas why ?

I don't want to go and install ispconfig3 with this error showing and i have checked everything a zillion times now ...arrggg..

 NB Squirrel mail is working.

From: admin at: 2014-08-21 11:44:33

If apt Shows them as instaled when you run:

apt-get install php-auth php-pear

then you can ignore the error from cross check and proceed with the ispconfig installation.

From: Anonymous at: 2014-10-24 19:53:08

If you change the ordering of the ubuntu_package_check.sh script, it wont show up the php-auth and php-pear as missing - the comparison is line by line, in alphanumeric ordering

Need to re-order as follows

[...]
php-auth php-pear

php5 php5-cgi php5-cli php5-common php5-curl php5-fpm php5-gd php5-imagick php5-imap php5-intl php5-mcrypt php5-memcache php5-memcached php5-ming php5-mysql php5-ps php5-pspell php5-recode php5-snmp php5-sqlite php5-tidy php5-xcache php5-xmlrpc php5-xsl
phpmyadmin [...]

From: at: 2014-08-21 13:58:46

I have gone through with the proceedure to install ispconfig a few times.

My comment is it is difficult to get everything right, especially if you have two-fingered typing skills like me.

 

This time, I used the following command to monitor my system log whilst i was working in another terminal window:-

 tail -f /var/log/syslog

This allows you to see the system log responses to all the commands you enter.

Thus, if you make a mistake, you can see the error messages.

Perhaps you could in some way use this in your install procedure to allow the 2-fingered typists to get feedback vis-a-vis their typing errors before the whole install gets messed up ?

 

From: admin at: 2014-08-21 14:07:57

The install guides are made in a way that you can copy the command lines right to your shell window, so nearly no typing is required. The only cases were you have to type something in is when your Domain Name or IP address are required for an file. If you have a Windows Desktop, then you can use putty to connect to your Server and copy / paste the commands.

From: Lindeni at: 2014-10-24 13:29:56


Hello
 
 I am sorry to ask this question here, I have tried to search the forums and the FAQs, but I couldn't find a solution to my problem

 I have installed ISPConfig3 on Ubuntu14.04 LTS following this guide, I have everything working except for the "Email" section/tab on the ISPConfig admin. When I click on the "Email" tab  I get the left sidebar opened, but when I click on any of the menu items of the sidebar like Domain, Mailboxes etc, nothing shows up on the right. I don't know what I have done wrong. So now I can not add email domains and user email boxes and I cannot do anything under the "Email" Section. 

 I have purchased the ISPConfig3 Manual and I tried to setup emails according to the manual, but still I can't get any of the forms under the email section/tab

 During setup, the only file I failed to get is the apache2.2-common, it was the only one not available on my sources.

 

Any help is highly appreciated

From: admin at: 2014-10-24 13:35:02

I guess you created a alias /mail instead of the alias /webmail for squirrelmail. a alias /mail will override the mail module from ispconfig and Forwards all requests to squirrelmail instead.

From: Anonymous at: 2014-10-11 01:25:14

I have followed this guide 4 times from scratch and every single time I am unable to receive email from outside sources. I can send fine, and I can receive email from my own server but not any email from outside of my server.

From: SamTzu at: 2014-10-15 09:08:05

Probably a firewall issue. Try to access your server from outside using telnet like this. 

telnet your.server.address.com 25

If you can't contact it then you know your ISP is blocking port 25. 

From: Anonymous at: 2014-11-12 14:41:10

Hello. When installing ISPConfig, I didn't get the part that asks the following question:
 
--- Do you want a secure (SSL) connection to the ISPConfig web interface (y,n) [y]:
 
As a result I can't access the ISPConfig control panel, both http and https give me a bad request error that reads as follows:
 
--- error ---
Bad Request
Your browser sent a request that this server could not understand.
Reason:You're speaking plain HTTP to an SSL-enabled server port. Instead use the HTTPS scheme to access this URL,
---
 
 
I don't know what I have done wrong, but after the installer finished installing ISPConfig it just exited and returned to the command prompt after the following lines:

 ---

 Restarting ftp server: Running: /usr/sbin/pure-ftpd-mysql-virtualchroot -l mysql:/etc/pure-ftpd/db/mysql.conf -l pam -D -b -A -H -O clf:/var/log/pure-ftpd/transfer.log -8 UTF-8 -E -Y 1 -u 1000 -B

Installation completed.

----

Please help. What did I miss?

From: Anonymous at: 2014-11-14 06:02:52

I had the same thing happen, no question for installing SSL.  It seems that SSL is now installed by default.  I can access my server just fine on https://myserver.com:8080.  The error you received says that it is SSL enabled so maybe an issue with your browser.

From: amldc at: 2015-01-20 09:41:30

I'm very lazy  and I love seting up server with just copy-paste from howtoforge !

For those who install from USB stick: the system may recognize your USB stick as SDA and then try to install GRUB to /dev/sda. Just select NO in the 'Install the GRUB boot loader to the master boot record?' dialog; you will be prompted with another dialog which allows you to specify the correct device (mine was /dev/sdb as shown in the disk partitioning section during the installation).

From: Marc at: 2015-03-02 14:59:28

Thank you very much Falko

Your guides helped me a lot.

From: diablo666 at: 2015-03-05 08:14:41

Hi the /etc/apt/source.list is worng, only deb-src present....

From: till at: 2015-03-05 13:44:57

The source.list file should be ok, you should try it. I wondered myself some time ago about that but Ubuntu seems to handle it like this now. 

From: Bogdan at: 2015-03-06 10:25:47

Great tutorial. Everything works great, except amavis complains in mail.log :

 amavis[2269]: (02269-01) (!)connect to /var/run/clamav/clamd.ctl failed, attempt #1: Can't connect to UNIX socket /var/run/clamav/clamd.ctl: No such file or directory

Clamav didn't start after the first reboot of the server. Probably because it didn't have it's virus definitions updated. I had to start it manually. 

 #service clamav-daemon start

It started normally after the second reboot.

From: Gordon Fielden at: 2015-03-15 15:54:40

Is the going to be an update that includes Roundcube install of squirrell, as squirrel doesn't have that professional feel, i see there PS for CentOS and Debian using Rouncube.

From: Gordon Fielden at: 2015-03-15 18:13:19

where is the roundcube installation ?

From: Karlis Eriks Grinbergs at: 2015-03-30 03:31:22

good morning

Ok. so fare works all good. But how i do log on to Squirrelmail or how i do configure for log so i eable do configure Emailadresses????

From: till at: 2015-03-30 06:13:24

The email address is created in ISPConfig, not in squirrelmail.Login to ispconfig and create the mailbox there. Then you can login with this email address and the password of the mailbox that you created in squirrelmail or your Desktopp email program to send and receive emails.

From: Bubba at: 2015-03-31 15:24:47

Followed the guide line-by-line.

Having trouble receiving mail from external sites like gmail etc. to my server.

System SENDS mail just fine but am unable to recieve.

My ip is through godady.

output of dig -t mx example.com is as follows:

; <<>...<<>> -t mx example.com

;; global options: +cmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47746

;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 4

 

;; OPT PSEUDOSECTION:

; EDNS: version: 0, flags:; udp: 1300

;; QUESTION SECTION:

;example.com. IN MX

 

;; ANSWER SECTION:

example.com. 3600 IN MX 0 smtp.example.com.

example.com. 3600 IN MX 10 mail.example.com.

 

;; AUTHORITY SECTION:

example.com. 3600 IN NS ns72.domaincontrol.com.

example.com. 3600 IN NS ns71.domaincontrol.com.

 

;; ADDITIONAL SECTION:

ns71.domaincontrol.com. 66161 IN A 216.69.185.46

ns71.domaincontrol.com. 87240 IN AAAA 2607:f208:206::2e

ns72.domaincontrol.com. 26469 IN A 208.109.255.46

 

;; Query time: 37 msec

;; SERVER: 127.0.1.1#53(127.0.1.1)

;; WHEN: Tue Mar 31 10:13:53 EDT 2015

;; MSG SIZE  rcvd: 199

 

I found this post: http://ubuntuforums.org/archive/index.php/t-2131846.html

Which seems to reference some of the same issues I am having but the broken english

makes it hard for me to understand.  Any suggestions or help appreciated.