--- doc/build/Attic/install.html 2001/12/01 21:34:48 1.11 +++ doc/build/Attic/install.html 2002/05/10 19:02:45 1.22 @@ -1,51 +1,237 @@ + - + + LON-CAPA Installation + + - -

LON-CAPA Installation

-

Current Installation Procedure

-

-Scott Harrison -

-

$Date: 2001/12/01 21:34:48 $; $Revision: 1.11 $

-

-This is the current list of steps to support LON-CAPA installation. These -steps have been tested.

-
    -
  1. Get LON-CAPA on a CD by + + +
      +

    +You will need to check all the following things to ensure proper +installation of your LON-CAPA system. +

  2. -
  3. Install with CD-ROM +
  4. +Creating a user 'www'
  5. +
  6. +Make a LON-CAPA system work with shadow passwords
  7. +
  8. +Installing LON-CAPA files
  9. +
  10. +Checking your Linux RPMs
  11. +
  12. +Configuring the MySQL database
  13. +
  14. +Testing to see if the LON-CAPA server is operational
  15. + +
      + + + +

    Creating a user 'www'

    +

    +Execute the following command to create a user named 'www' on your +LON-CAPA server: +

    +
    +/usr/sbin/useradd www +
    +
    +

    Make a LON-CAPA system work with shadow passwords

    + + + + + + + + + +
    Step #Description
    +1 + +

    Is your system using shadow passwords? (Note: LON-CAPA will +work with either MD5/non-MD5 configured systems). If your +system is not using shadow passwords, then do not perform +any of the additional steps. If your system is using shadow +passwords, then you will need to perform the additional steps below. +

    +

    +How to detect: +
    command: cat /etc/passwd | grep ':x:' +

    +

    If there is output such as "root:x:0:0:root:/root:/bin/bash", +then your system is using shadow passwords and you will need to continue with +the steps below. +

    +
    +2 + +

    Retrieve the mod_auth_external source by +running the following command +

    +

    +wget http://www.wwnet.net/~janc/software/mod_auth_external-2.1.13.tar.gz + +

    +
    +3 + +

    Unpack the mod_auth_external source by +running the following command +

    +

    +tar xzvf mod_auth_external-2.1.13.tar.gz +

    +
    +4 + +

    Go to the pwauth directory by +running the following command +

    +

    +cd mod_auth_external-2.1.13/pwauth/ +

    +
    +5 + +

    Edit config.h and change SERVER_UIDS definition +

    +

    +Determine the user id of 'www': +
    grep ^www /etc/passwd | cut -d':' -f3 +
    +Change the line +
    #define SERVER_UIDS 99 /* user "nobody" */ +
    to be +
    #define SERVER_UIDS 513 /* user "www" */ +
    where in this example 513 corresponds to the user id of 'www'. +

    +
    +6 + +

    Compile the pwauth executable by +running the following command +

    +

    +make +

    +
    +7 + +

    Install pwauth by doing the following +

    +

    +cp pwauth /usr/local/sbin/ +
    chmod 6755 /usr/local/sbin/pwauth +

    +

    +Edit (creating the file) /etc/pam.d/pwauth to have the contents: +

    +
    +        auth       required     /lib/security/pam_pwdb.so shadow nullok
    +        auth       required     /lib/security/pam_nologin.so
    +        account    required     /lib/security/pam_pwdb.so
    +
    +
    +
    +

    Installing LON-CAPA files

    +

    +Download the most current + +loncapa.tar.gz. +

    +

    +The UPDATE command will refresh your filesystem with all +the latest LON-CAPA software. +

    + + +
    ./UPDATE
    + +

    Checking your Linux RPMs

    +

    +The CHECKRPMS command will check the RPMs on your machine +against an FTP repository. +

    + + +
    ./CHECKRPMS
    +
    +

    Configuring the MySQL database

    +

    +The following commands describe how to configure the MySQL database +on your LON-CAPA server. +
    Note: +

    -
  16. After installation, restart the computer. Login as root. Enter this -command (you only need to do this after your first reboot): -
      -
    1. sh /usr/sbin/loncapa_configure
    2. -
  17. -
-
-

-You can also try to install LON-CAPA on an existing installation of -RedHat 6.2. Please see -how_to_install_loncapa_on_a_preinstalled_system.txt. +

  • you should substitute 'WWWPASSWORD' with the value for 'lonSqlAccess' +present inside /etc/httpd/conf/loncapa.conf or in access.conf +
  • +
  • you should substitute 'ROOTPASSWORD' with something very hard to guess +(it does not have to be the Linux OS root password) +
  • + +

    Entering the mysql shell

    +
    +
    +mysql -u root -p mysql
    +OR
    +mysql -u root mysql (depending on whether you have set a root password)
    +
    +
    +

    Creating the mysql 'www' user (after entering mysql shell)

    +
    +
    +mysql> CREATE DATABASE loncapa;
    +
    +mysql> INSERT INTO user (Host, User, Password)
    +mysql> VALUES ('localhost','www',password('WWWPASSWORD'));
    +
    +mysql> GRANT ALL PRIVILEGES ON *.* TO www@localhost;
    +
    +mysql> FLUSH PRIVILEGES;
    +
    +
    +

    SECURITY: set a password for the mysql 'root' user

    +
    +
    +shell> mysql -u root mysql
    +mysql> SET PASSWORD FOR root@localhost=PASSWORD('ROOTPASSWORD');
    +
    +
    +

    SECURITY: only allow access from localhost

    +
    +
    +shell> mysql -u root -p mysql
    +mysql> DELETE * FROM user WHERE host<>'localhost';
    +
    +
    + +

    Testing to see if the LON-CAPA server is operational

    +

    +The TEST command will check the installation software, +the perl libraries on your system, the MySQL database, and +will also automatically test the real-time operation of the +LON-CAPA Apache web server. +

    + + +
    ./TEST
    +

    +Using the TEST command will likely +be an iterative process. +It is normal to expect that the TEST command +will recommend you perform various steps to ensure optimal +performance of your LON-CAPA server.

    + +