Blame Manuals/Tcpi-ug/Configurations/Dialup/server.docbook

422188
<sect1 id="configurations-dialup-server">
5cec14
35566a
    <title>The Server Computer</title>
35566a
422188
    <sect2 id="configurations-dialup-server-install">
422188
    <title>Installing Server Computer</title>
35566a
c0d2a2
    <para>
c0d2a2
        Start with a minimal installation of &TC;;, bootup the
c0d2a2
        operating system, and login as root user. 
c0d2a2
    </para>
c0d2a2
c0d2a2
    <sect3 id="configurations-dialup-server-install-ppp">
c0d2a2
    <title>Ppp Server</title>
c0d2a2
    <para>
c0d2a2
        The ppp server provides the software required to establish and
c0d2a2
        maintain a PPP link with another system and negociate Internet
c0d2a2
        Protocol addresses for each end of the link.
c0d2a2
    </para>
c0d2a2
c0d2a2
    <screen>yum install ppp</screen>
c0d2a2
c0d2a2
    </sect3>
c0d2a2
422188
    <sect3 id="configurations-dialup-server-install-dns">
35566a
    <title>Name Server</title>
35566a
    <para>
35566a
        The name server provides the software required to translate
35566a
        domain names into IP address and IP addresses into domain
35566a
        names. With this software you can rembember addresses like
422188
        <ulink url="https://server.example.com/" /> instead of
422188
        addresses like <ulink url="https://192.168.0.1/" />.  There
422188
        are other feautres (e.g., mail exchanger resolution, zone
422188
        delegation, etc.) provided by this software that aren't used
422188
        in the point-to-point configuration we describe in this
422188
        chapter.
35566a
    </para>
35566a
    <screen>yum install bind</screen>
35566a
    <note>
35566a
    <para>
35566a
        There is a <package>bind-chroot</package> packages, however,
35566a
        we aren't using it because SELinux is already enforced on the
35566a
        &TC;; filesystem and it provides far more security than the
35566a
        idea of <package>bind-chroot</package> package itself does.
35566a
    </para>
35566a
    </note>
35566a
    </sect3>
35566a
422188
    <sect3 id="configurations-dialup-server-install-mail">
35566a
    <title>Mail Server</title>
35566a
    <para>
35566a
        The mail server provides the software required to let you
35566a
        send/receive e-mail messages to/from others. The mail server
35566a
        is splitted in three basic components: The Mail Transfer Agent
35566a
        (<package>postfix</package>), The Mail Delivery Agent
35566a
        (<package>Cyrus-Imapd</package>) and an intermediary daemon
35566a
        named <systemitem class="daemon">saslauthd</systemitem> to
35566a
        handle users' authentication. The mail transfer agent is the
35566a
        program your e-mail client sends e-mail messages to. The mail
35566a
        delivery agent, on the other hand, is the program your e-mail
35566a
        client reads e-mail message from (i.e., this is the place
35566a
        where your mailbox is stored in).  The authentication daemon
35566a
        is used by the mail delivery agent to authenticate user's
35566a
        credentials (e.g., the information that let you access an
35566a
        specific mailbox). 
35566a
    </para>
35566a
35566a
    <screen>yum install postfix cyrus-imapd cyrus-sasl</screen>
35566a
35566a
    <para>
35566a
        By default, the <application>sendmail</application>
35566a
        program is used as mail transfer agent, not postfix. For the
35566a
        sake of that point-to-point configuration we are implementing,
35566a
        I decided to use postfix instead as default mail transfer
35566a
        agent, not sendmail.  To effectively achieve this decition, it
35566a
        is required to use the <command>alternatives</command>
35566a
        command, as it shown below:
35566a
    </para>
35566a
35566a
    <screen>alternatives --config mta</screen>
5cec14
5cec14
    <para>
35566a
        This command will present you a menu to chose between
35566a
        available mail transfer agents, so it is there where you
35566a
        choose to use posfix as default option. Now that you've
35566a
        changed postfix the default mail transfer agent, you can
35566a
        saftly remove the sendmail package to avoid unused software
35566a
        to remain inside the computer. To do this, you can run the
35566a
        following command:
5cec14
    </para>
5cec14
35566a
    <screen>yum remove sendmail</screen>
35566a
35566a
    <para>
35566a
       In addition to mail server specific packages, we also provide
35566a
       mailing list support. Mailing lists provide e-mail addresses
35566a
       that users registered inside the ISP can write to. When you
35566a
       sed an e-mail to a mailing list, your message is distributed to
35566a
       all members of that list. In order for this to happen, people
35566a
       registered inside ISP need to subscribe themselves into that
35566a
       mailing list they want to receive messages from.  The
35566a
       subscription of mailinglist will be available through a secured
35566a
       web application in the following url:
35566a
    </para>
35566a
35566a
    <itemizedlist>
35566a
    <listitem>
35566a
    <para>
422188
        <ulink url="https://server.example.com/lists/" />
35566a
    </para>
35566a
    </listitem>
35566a
    </itemizedlist>
35566a
    
35566a
    <screen>yum install mailman</screen>
35566a
    </sect3>
35566a
422188
    <sect3 id="configurations-dialup-server-install-web">
35566a
    <title>Web Server</title>
35566a
    <para>
35566a
        The web server provides the software required to support web
35566a
        interfaces like those one previously mention to register new
35566a
        users inside the ISP and subscribe mailing lists. The web
35566a
        server provided in this configuration will accept requests
35566a
        both unencrypted and encrypted.
35566a
    </para>
35566a
35566a
    <screen>yum install httpd mod_ssl crypto-utils</screen>
35566a
35566a
    <para>
35566a
        In addition to mailing lists support, the web server will
35566a
        provide access to Subversion.  Subvesion provides a way to
35566a
        manage files through version control. The main purpose of
35566a
        providing Subversion support here is sharing the version of
c0d2a2
        &TCAR; I've been working on.
c0d2a2
    </para>
35566a
35566a
    <screen>yum install subversion mod_dav_svn</screen>
35566a
35566a
    </sect3>
35566a
422188
    <sect3 id="configurations-dialup-server-install-ldap">
422188
35566a
    <title>Directory Server</title>
422188
35566a
    <para>
35566a
        The directory server provides the software required to unify
35566a
        user information. This server is access by other server
35566a
        whenever user information is required. You, as end user, can
35566a
        also use this server from your workstation to retrive a list
35566a
        of all users registered in the ISP. This list can be retrived
35566a
        by the web interface the ISP provides, or any application your
35566a
        workstation provide (e.g., most e-mail clients provide a way
35566a
        to configure LDAP servers to build address book from it.).
35566a
    </para>
35566a
35566a
    <screen>yum openldap-servers python-ldap</screen>
35566a
35566a
    </sect3>
35566a
    </sect2>
35566a
422188
    <sect2 id="configurations-dialup-server-config">
422188
    <title>Configuring Server Computer</title>
422188
    <para>
422188
        ...
422188
    </para>
422188
    </sect2>
422188
5cec14
</sect1>