--- doc/build/Attic/install.html	2002/04/23 12:41:23	1.14
+++ doc/build/Attic/install.html	2002/05/10 16:26:32	1.20
@@ -1,7 +1,10 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+ "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <!-- The LearningOnline Network with CAPA -->
-<!-- $Id: install.html,v 1.14 2002/04/23 12:41:23 harris41 Exp $ -->
+<!-- $Id: install.html,v 1.20 2002/05/10 16:26:32 harris41 Exp $ -->
 <html>
 <head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8"></meta>
 <title>LON-CAPA Installation</title>
 <!-- pdfahref install.pdf -->
 <!-- button INSTALL -->
@@ -12,6 +15,7 @@
 <p>
 You will need to check all the following things to ensure proper
 installation of your LON-CAPA system.
+</p>
 <ul>
 <li><a href="#wwwuser">
 Creating a user 'www'</a></li>
@@ -23,6 +27,8 @@ Installing LON-CAPA files</a></li>
 Checking your Linux RPMs</a></li>
 <li><a href="#mysql">
 Configuring the MySQL database</a></li>
+<li><a href="#testing">
+Testing to see if the LON-CAPA server is operational</a></li>
 </ul>
 <br />&nbsp;
 <!-- preamble end -->
@@ -38,7 +44,6 @@ LON-CAPA server:
 </td></tr></table>
 <a name="shadow" />
 <h3>Make a LON-CAPA system work with shadow passwords</h3>
-<p>
 <table border="1">
 <tr><th>Step #</th><th>Description</th></tr>
 <tr><td>
@@ -73,15 +78,68 @@ wget http://www.wwnet.net/~janc/software
 <tr><td>
 <font size='+1'>3</font>
 </td><td>
-<p><strong>More steps...</strong>
+<p><strong>Unpack the mod_auth_external source</strong> by
+running the following command
 </p>
-<p><tt>
-There are more steps to include here.
-</tt>
+<p>
+<tt>tar xzvf mod_auth_external-2.1.13.tar.gz</tt>
 </p>
 </td></tr>
-</table>
+<tr><td>
+<font size='+1'>4</font>
+</td><td>
+<p><strong>Go to the <tt>pwauth</tt> directory</strong> by
+running the following command
+</p>
+<p>
+<tt>cd mod_auth_external-2.1.13/pwauth/</tt>
+</p>
+</td></tr>
+<tr><td>
+<font size='+1'>5</font>
+</td><td>
+<p><strong>Edit <tt>config.h</tt> and change SERVER_UIDS definition</strong>
+</p>
+<p>
+Determine the user id of 'www':
+<br /><tt>grep ^www /etc/passwd | cut -d':' -f3</tt>
+<br />
+Change the line
+<br /><tt>#define SERVER_UIDS 99       /* user "nobody" */</tt>
+<br />to be
+<br /><tt>#define SERVER_UIDS 513      /* user "www" */</tt>
+<br />where in this example 513 corresponds to the user id of 'www'.
+</p>
+</td></tr>
+<tr><td>
+<font size='+1'>6</font>
+</td><td>
+<p><strong>Compile the <tt>pwauth</tt> executable</strong> by
+running the following command
+</p>
+<p>
+<tt>make</tt>
+</p>
+</td></tr>
+<tr><td>
+<font size='+1'>7</font>
+</td><td>
+<p><strong>Install <tt>pwauth</tt></strong> by doing the following
+</p>
+<p>
+<tt>cp pwauth /usr/local/sbin/</tt>
+<br /><tt>chmod 6755 /usr/local/sbin/pwauth</tt>
+</p>
+<p>
+Edit (creating the file) /etc/pam.d/pwauth to have the contents:
 </p>
+<pre>
+        auth       required     /lib/security/pam_pwdb.so shadow nullok
+        auth       required     /lib/security/pam_nologin.so
+        account    required     /lib/security/pam_pwdb.so
+</pre>
+</td></tr>
+</table>
 <a name="install" />
 <h3>Installing LON-CAPA files</h3>
 <p>
@@ -110,26 +168,77 @@ against an FTP repository.
 <p>
 The following commands describe how to configure the MySQL database
 on your LON-CAPA server.
+<br />Note:
 </p>
+<ul>
+<li>you should substitute 'WWWPASSWORD' with the value for 'lonSqlAccess'
+present inside <tt>/etc/httpd/conf/loncapa.conf</tt> <i>or in access.conf</i>
+</li>
+<li>you should substitute 'ROOTPASSWORD' with something very hard to guess
+(it does not have to be the Linux OS root password)
+</li>
+</ul>
+<p>Entering the mysql shell</p>
 <table bgcolor="#aaaaaa" border="1"><tr><td>
 <pre>
-Enter the mysql shell---
 mysql -u root -p mysql
+OR
+mysql -u root      (depending on whether you have set a root password)
+</pre>
+</td></tr></table>
+<p>Creating the mysql 'www' user (after entering mysql shell)</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<pre>
+mysql> CREATE DATABASE loncapa;
 
-Run these commands---
-CREATE DATABASE loncapa;
-
-INSERT INTO user (Host, User, Password)
-VALUES ('localhost','www',password('SOMEPASSWORD'));
-
-GRANT ALL PRIVILEGES ON *.* TO www@localhost;
+mysql> INSERT INTO user (Host, User, Password)
+mysql> VALUES ('localhost','www',password('WWWPASSWORD'));
 
-FLUSH PRIVILEGES;
+mysql> GRANT ALL PRIVILEGES ON *.* TO www@localhost;
 
+mysql> FLUSH PRIVILEGES;
+</pre>
+</td></tr></table>
+<p>SECURITY: set a password for the mysql 'root' user</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<pre>
+shell> mysql -u root mysql
+mysql> SET PASSWORD FOR root@localhost=PASSWORD('ROOTPASSWORD');
+</pre>
+</td></tr></table>
+<p>SECURITY: set a password for the mysql 'root' user</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<pre>
 shell> mysql -u root mysql
-mysql> SET PASSWORD FOR root@localhost=PASSWORD('new_password');
+mysql> SET PASSWORD FOR root@localhost=PASSWORD('ROOTPASSWORD');
+</pre>
+</td></tr></table>
+<p>SECURITY: only allow access from localhost</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<pre>
+shell> mysql -u root -p mysql
+mysql> DELETE * FROM user WHERE host<>'localhost';
 </pre>
 </td></tr></table>
+<a name="testing" />
+<h3>Testing to see if the LON-CAPA server is operational</h3>
+<p>
+The <strong>TEST</strong> command will check the installation software,
+the perl libraries on your system, the MySQL database, and
+will also automatically test the real-time operation of the 
+LON-CAPA Apache web server.
+</p>
+<table bgcolor="#aaaaaa" border="1">
+<tr><td><tt>./TEST</tt></td></tr>
+</table>
+<p>
+Using the <strong>TEST</strong> command will likely
+be an iterative process.
+It is normal to expect that the <strong>TEST</strong> command
+will recommend you perform various steps to ensure optimal
+performance of your LON-CAPA server.
+</p>
 <!-- maintext end -->
+<!-- validated -->
 </body>
 </html>
