Diff for /doc/build/Attic/install.html between versions 1.2 and 1.23

version 1.2, 2000/10/26 07:10:51 version 1.23, 2002/05/10 19:16:12
Line 1 Line 1
 <HTML>  <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
 <HEAD>   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <TITLE>LON-CAPA Installation</TITLE>  <!-- The LearningOnline Network with CAPA -->
 </HEAD>  <!-- $Id$ -->
 <BODY>  <html>
 <H1>LON-CAPA Installation</H1>  <head>
 <H3>Current Installation Procedure</H3>  <meta http-equiv="Content-Type" content="text/html; charset=utf-8"></meta>
 <P>  <title>LON-CAPA Installation</title>
 This is the current list of steps to support LON-CAPA installation.  These steps have  <!-- pdfahref install.pdf -->
 been tested (almost, I'm going to do this today).  <!-- button INSTALL -->
 <OL>  </head>
 <LI>Get Redhat 6.2 on a CD by  <body bgcolor='#ffffff'>
 <UL>  <!-- preamble start -->
 <LI>Using a RedHat 6.2 CD  <br />&nbsp;
 <LI>Downloading a RedHat 6.2 <A HREF="http://install.lon-capa.org/3.1/currentcdimage">CD image</A> and burning a CD  <p>
 <LI>Or, alternatively do a network install from a <A HREF="http://install.lon-capa.org/3.1/currentcdsource">  You will need to check all the following things to ensure proper
 RedHat 6.2 CD source tree</A>.  You need to burn a boot floppy disk with a network boot image;  installation of your LON-CAPA system.
 <A HREF="http://install.lon-capa.org/3.1/currentcdsource/images/bootnet-20000407.img">  </p>
 bootnet-20000407.img</A>.  (Download the image file; insert a blank floppy disk; and type a  <ul>
 command similar to: <TT>dd if=bootnet-20000407.img of=/dev/fd0</TT>).  For installation, you  <li><a href="#wwwuser">
 need to specify <TT>http://www.lon-capa.org</TT> as your download URL, and <TT>/install/3.1/currentcdsource</TT>  Creating a user 'www'</a></li>
 as the source location.  <li><a href="#shadow">
 </UL>  Make a LON-CAPA system work with shadow passwords</a></li>
 <LI>Install RedHat 6.2  <li><a href="#install">
 <UL>  Installing LON-CAPA files</a></li>
 <LI><B>Important: Do a "GNOME Workstation Install" and go with their default list of packages</B>  <li><a href="#checkrpms">
 <LI><B>Important: Make sure you add a user "www"</B>  Checking your Linux RPMs</a></li>
 </UL>  <li><a href="#mysql">
 <LI>After installation, install extra RPMs/upgrades by downloading all files from  Configuring the MySQL database</a></li>
 <A HREF="http://install.lon-capa.org/3.1/SupplementalRPMS/">  <li><a href="#testing">
 http://install.lon-capa.org/3.1/SupplementalRPMS</A>.  Testing to see if the LON-CAPA server is operational</a></li>
 <UL>  </ul>
 <LI>Use this command to install the RPMs you download: <TT>rpm -Uvh --force *.rpm</TT>.  <br />&nbsp;
 </UL>  <!-- preamble end -->
 <LI>Remove extra RPMs by downloading and running the script   <!-- maintext start -->
 <A HREF="http://install.lon-capa.org/3.1/scripts/remove_extra.sh">  <a name="wwwuser" />
 http://install.lon-capa.org/3.1/scripts/remove_extra.sh</A> as root.  <h3>Creating a user 'www'</h3>
 <LI>Configure needed files.  <p>
 <UL>  Execute the following command to create a user named 'www' on your
 <LI>Currently, reconfiguration must be handled manually and involves an administrator  LON-CAPA server:
 altering configuration files present throughout the system.  For a list of these  </p>
 files and their descriptions, visit <A HREF="http://install.lon-capa.org/3.1/loncapafiles.html">  <table bgcolor="#aaaaaa" border="1"><tr><td>
 http://install.lon-capa.org/3.1/loncapafiles.html</A>.  <tt>/usr/sbin/useradd www</tt>
 <LI>Important files are /etc/httpd/conf/access.conf, /etc/ntp.conf, /etc/krb.conf,    </td></tr></table>
 /home/httpd/lonTabs/spare.tab, /home/httpd/lonTabs/hosts.tab (if setting up a cluster different  <a name="shadow" />
 than MSU's)  <h3>Make a LON-CAPA system work with shadow passwords</h3>
 <LI>Run <B>AS USER=www (NEVER EVER EVER EVER AS USER=root)</B> <TT>/home/httpd/perl/loncron &</TT>.  <table border="1">
 <LI>After 10 minutes, you should be able to check the file <TT>/home/httpd/html/lon-status/index.html</TT>  <tr><th>Step #</th><th>Description</th></tr>
 to see if your machine has been successfully set up.  <tr><td>
 </UL>  <font size="+1">1</font>
 </OL>  </td><td>
 </P>  <p>Is your system using shadow passwords? (Note: LON-CAPA will
 <H3>Future Installation Procedure (not yet implemented)</H3>  work with either MD5/non-MD5 configured systems).  If your
 <P>  system is not using shadow passwords, then do not perform
 In the future, LON-CAPA Installation will be distributed on a CD complete with a  any of the additional steps.  If your system is using shadow
 customized interface.  Many elements for doing this have been coded, and are in place, but  passwords, then you will need to perform the additional steps below.
 it awaits completion.  </p>
 </P>  <p>
 </BODY>  <strong>How to detect:</strong>
 </HTML>  <br />command: <tt>cat /etc/passwd | grep ':x:'</tt>
   </p>
   <p>If there is output such as "<tt>root:x:0:0:root:/root:/bin/bash</tt>",
   then your system is using shadow passwords and you will need to continue with
   the steps below.
   </p>
   </td></tr>
   <tr><td>
   <font size='+1'>2</font>
   </td><td>
   <p><strong>Retrieve the mod_auth_external source</strong> by
   running the following command
   </p>
   <p><tt>
   wget http://www.wwnet.net/~janc/software/mod_auth_external-2.1.13.tar.gz
   </tt>
   </p>
   </td></tr>
   <tr><td>
   <font size='+1'>3</font>
   </td><td>
   <p><strong>Unpack the mod_auth_external source</strong> by
   running the following command
   </p>
   <p>
   <tt>tar xzvf mod_auth_external-2.1.13.tar.gz</tt>
   </p>
   </td></tr>
   <tr><td>
   <font size='+1'>4</font>
   </td><td>
   <p><strong>Go to the <tt>pwauth</tt> directory</strong> by
   running the following command
   </p>
   <p>
   <tt>cd mod_auth_external-2.1.13/pwauth/</tt>
   </p>
   </td></tr>
   <tr><td>
   <font size='+1'>5</font>
   </td><td>
   <p><strong>Edit <tt>config.h</tt> and change SERVER_UIDS definition</strong>
   </p>
   <p>
   Determine the user id of 'www':
   <br /><tt>grep ^www /etc/passwd | cut -d':' -f3</tt>
   <br />
   Change the line
   <br /><tt>#define SERVER_UIDS 99       /* user "nobody" */</tt>
   <br />to be
   <br /><tt>#define SERVER_UIDS 513      /* user "www" */</tt>
   <br />where in this example 513 corresponds to the user id of 'www'.
   </p>
   </td></tr>
   <tr><td>
   <font size='+1'>6</font>
   </td><td>
   <p><strong>Compile the <tt>pwauth</tt> executable</strong> by
   running the following command
   </p>
   <p>
   <tt>make</tt>
   </p>
   </td></tr>
   <tr><td>
   <font size='+1'>7</font>
   </td><td>
   <p><strong>Install <tt>pwauth</tt></strong> by doing the following
   </p>
   <p>
   <tt>cp pwauth /usr/local/sbin/</tt>
   <br /><tt>chmod 6755 /usr/local/sbin/pwauth</tt>
   </p>
   <p>
   Edit (creating the file) /etc/pam.d/pwauth to have the contents:
   </p>
   <pre>
           auth       required     /lib/security/pam_pwdb.so shadow nullok
           auth       required     /lib/security/pam_nologin.so
           account    required     /lib/security/pam_pwdb.so
   </pre>
   </td></tr>
   </table>
   <a name="install" />
   <h3>Installing LON-CAPA files</h3>
   <p>
   Download the most current
   <a href="http://install.lon-capa.org/versions/current/loncapa.tar.gz">
   loncapa.tar.gz</a>.
   </p>
   <p>
   The <strong>UPDATE</strong> command will refresh your filesystem with all
   the latest LON-CAPA software.
   </p>
   <table bgcolor="#aaaaaa" border="1">
   <tr><td><tt>./UPDATE</tt></td></tr>
   </table>
   <a name="checkrpms" />
   <h3>Checking your Linux RPMs</h3>
   <p>
   The <strong>CHECKRPMS</strong> command will check the RPMs on your machine
   against an FTP repository.
   </p>
   <table bgcolor="#aaaaaa" border="1">
   <tr><td><tt>./CHECKRPMS</tt></td></tr>
   </table>
   <a name="mysql" />
   <h3>Configuring the MySQL database</h3>
   <p>
   The following commands describe how to configure the MySQL database
   on your LON-CAPA server.
   <br />Note:
   </p>
   <ul>
   <li>you should substitute 'WWWPASSWORD' with the value for 'lonSqlAccess'
   present inside <tt>/etc/httpd/conf/loncapa.conf</tt> <i>or in access.conf</i>
   </li>
   <li>you should substitute 'ROOTPASSWORD' with something very hard to guess
   (it does not have to be the Linux OS root password)
   </li>
   </ul>
   <p>
   The following instructions assume you are logged in as 'root'.
   </p>
   <p>Entering the mysql shell</p>
   <table bgcolor="#aaaaaa" border="1"><tr><td>
   <pre>
   mysql -u root -p mysql
   OR
   mysql -u root mysql (depending on whether you have set a root password)
   </pre>
   </td></tr></table>
   <p>Creating the mysql 'www' user (after entering mysql shell)</p>
   <table bgcolor="#aaaaaa" border="1"><tr><td>
   <pre>
   mysql> CREATE DATABASE loncapa;
   
   mysql> INSERT INTO user (Host, User, Password)
   mysql> VALUES ('localhost','www',password('WWWPASSWORD'));
   
   mysql> GRANT ALL PRIVILEGES ON *.* TO www@localhost;
   
   mysql> FLUSH PRIVILEGES;
   </pre>
   </td></tr></table>
   <p>SECURITY: set a password for the mysql 'root' user</p>
   <table bgcolor="#aaaaaa" border="1"><tr><td>
   <pre>
   shell> mysql -u root mysql
   mysql> SET PASSWORD FOR root@localhost=PASSWORD('ROOTPASSWORD');
   </pre>
   </td></tr></table>
   <p>SECURITY: only allow access from localhost</p>
   <table bgcolor="#aaaaaa" border="1"><tr><td>
   <pre>
   shell> mysql -u root -p mysql
   mysql> DELETE * FROM user WHERE host<>'localhost';
   </pre>
   </td></tr></table>
   <a name="testing" />
   <h3>Testing to see if the LON-CAPA server is operational</h3>
   <p>
   The <strong>TEST</strong> command will check the installation software,
   the perl libraries on your system, the MySQL database, and
   will also automatically test the real-time operation of the 
   LON-CAPA Apache web server.
   </p>
   <table bgcolor="#aaaaaa" border="1">
   <tr><td><tt>./TEST</tt></td></tr>
   </table>
   <p>
   Using the <strong>TEST</strong> command will likely
   be an iterative process.
   It is normal to expect that the <strong>TEST</strong> command
   will recommend you perform various steps to ensure optimal
   performance of your LON-CAPA server.
   </p>
   <!-- maintext end -->
   <!-- validated -->
   </body>
   </html>

Removed from v.1.2  
changed lines
  Added in v.1.23


FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>